CVE-2022-1300

Summary

Multiple Version of TRUMPF TruTops products expose a service function without necessary authentication. Execution of this function may result in unauthorized access to change of data or disruption of the whole service.

Affected Software

VendorProductVersion RangeStatus
TRUMPFTruTops BoostV13.01 < unspecifiedaffected
TRUMPFTruTops Boostunspecified <= V13.05affected
TRUMPFTruTops BoostV13.08.21affected
TRUMPFTruTops Fab (incl. TruTops Monitor)V22.01. < unspecifiedaffected
TRUMPFTruTops Fab (incl. TruTops Monitor)unspecified <= V22.05.affected
TRUMPFTruTops Fab (incl. TruTops Monitor)V22.08.21affected

Weaknesses

  • CWE-306: CWE-306 Missing Authentication for Critical Function

ADP Enrichment

CVE Program Container

Additional References

References