CVE-2022-1300
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Multiple Version of TRUMPF TruTops products expose a service function without necessary authentication. Execution of this function may result in unauthorized access to change of data or disruption of the whole service.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| TRUMPF | TruTops Boost | V13.01 < unspecified | affected |
| TRUMPF | TruTops Boost | unspecified <= V13.05 | affected |
| TRUMPF | TruTops Boost | V13.08.21 | affected |
| TRUMPF | TruTops Fab (incl. TruTops Monitor) | V22.01. < unspecified | affected |
| TRUMPF | TruTops Fab (incl. TruTops Monitor) | unspecified <= V22.05. | affected |
| TRUMPF | TruTops Fab (incl. TruTops Monitor) | V22.08.21 | affected |
Weaknesses
- CWE-306: CWE-306 Missing Authentication for Critical Function
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.