Vulnerabilities > CVE-2022-2052 - Unspecified vulnerability in Trumpf products

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

trumpf

critical

NVD

Published: 2022-10-17

Updated: 2022-10-20

Summary

Multiple Trumpf Products in multiple versions use default privileged Windows users and passwords. An adversary may use these accounts to remotely gain full access to the system.

Vulnerable Configurations

Part	Description	Count
Application	Trumpf Trumpf JOB Order Interface * Trumpf Oseon - Trumpf Oseon 1.0.0 Trumpf Oseon 1.6 Trumpf Trutops Boost * Trumpf Trutops Monitor * Trumpf Trutops FAB *	7

References

https://cert.vde.com/en/advisories/VDE-2022-023/