Vulnerability Description
Multiple Trumpf Products in multiple versions use default privileged Windows users and passwords. An adversary may use these accounts to remotely gain full access to the system.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Trumpf | Job Order Interface | All versions |
| Trumpf | Oseon | <= 1.6 |
| Trumpf | Trutops Boost | All versions |
| Trumpf | Trutops Fab | All versions |
| Trumpf | Trutops Monitor | All versions |
Related Weaknesses (CWE)
References
- https://cert.vde.com/en/advisories/VDE-2022-023/Third Party Advisory
- https://cert.vde.com/en/advisories/VDE-2022-023/Third Party Advisory
FAQ
What is CVE-2022-2052?
CVE-2022-2052 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Multiple Trumpf Products in multiple versions use default privileged Windows users and passwords. An adversary may use these accounts to remotely gain full access to the system.
How severe is CVE-2022-2052?
CVE-2022-2052 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-2052?
Check the references section above for vendor advisories and patch information. Affected products include: Trumpf Job Order Interface, Trumpf Oseon, Trumpf Trutops Boost, Trumpf Trutops Fab, Trumpf Trutops Monitor.