CVE-2022-2642

Summary

Horner Automation’s RCC 972 firmware version 15.40 contains global variables. This could allow an attacker to read out sensitive values and variable keys from the device.

Affected Software

VendorProductVersion RangeStatus
Horner AutomationRemote Compact Controller (RCC) 972Firmware Version 15.40affected

Weaknesses

  • CWE-1108: CWE-1108 EXCESSIVE RELIANCE ON GLOBAL VARIABLES

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References