Vulnerabilities > Hornerautomation > Rcc972 Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-12-02 CVE-2022-2640 Inadequate Encryption Strength vulnerability in Hornerautomation Rcc972 Firmware 15.40
The Config-files of Horner Automation’s RCC 972 with firmware version 15.40 are encrypted with weak XOR encryption vulnerable to reverse engineering.
network
low complexity
hornerautomation CWE-326
7.5
7.5
2022-12-02 CVE-2022-2641 Use of Hard-coded Cryptographic Key vulnerability in Hornerautomation Rcc972 Firmware 15.40
Horner Automation’s RCC 972 with firmware version 15.40 has a static encryption key on the device.
network
low complexity
hornerautomation CWE-321
critical
 9.8
9.8
2022-12-02 CVE-2022-2642 Excessive Reliance on Global Variables vulnerability in Hornerautomation Rcc972 Firmware 15.40
Horner Automation’s RCC 972 firmware version 15.40 contains global variables.
network
low complexity
hornerautomation CWE-1108
7.5
7.5