How severe is CVE-2022-41636?

CVE-2022-41636 has a CVSS v3 score of 9.1 (CRITICAL).

CVE-2022-41636

Name: haas_controller
Author: haascnc

9.1CRITICAL

Communication traffic involving "Ethernet Q Commands" service of Haas Controller version 100.20.000.1110 is transmitted in cleartext. This allows an attacker to obtain sensitive information being pass

Publicado: 10/28/2022Atualizado: 11/21/2024

Descrição

Communication traffic involving "Ethernet Q Commands" service of Haas Controller version 100.20.000.1110 is transmitted in cleartext. This allows an attacker to obtain sensitive information being passed to and from the controller.

Análise IADesenvolvido por IA

Produtos Afetados

haascnchaas_controller

100.20.000.1110

Referências

https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01
MitigationThird Party AdvisoryUS Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01
MitigationThird Party AdvisoryUS Government Resource