Vulnerability Description
Daikin SVMPC1 version 2.1.22 and prior and SVMPC2 version 1.2.3 and prior are vulnerable to an attacker obtaining user login credentials and control the system.
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Daikinlatam | Svmpc1 | <= 2.1.22 |
| Daikinlatam | Svmpc2 | <= 1.2.3 |
Related Weaknesses (CWE)
References
- https://www.cisa.gov/uscert/ics/advisories/icsa-22-284-02Third Party AdvisoryUS Government Resource
- https://www.cisa.gov/uscert/ics/advisories/icsa-22-284-02Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2022-41653?
CVE-2022-41653 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Daikin SVMPC1 version 2.1.22 and prior and SVMPC2 version 1.2.3 and prior are vulnerable to an attacker obtaining user login credentials and control the system.
How severe is CVE-2022-41653?
CVE-2022-41653 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-41653?
Check the references section above for vendor advisories and patch information. Affected products include: Daikinlatam Svmpc1, Daikinlatam Svmpc2.