CVE-2022-2105

Client-side JavaScript controls may be bypassed to change user credentials and permissions without authentication, including a “root” user level meant only for the vendor. Web server root level access allows for changing of safety critical parameters.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-174-03 Mitigation Third Party Advisory
Configurations

Configuration 1


Information

Published : 2022-06-24 03:15

Updated : 2022-07-06 12:34


NVD link : CVE-2022-2105

Mitre link : CVE-2022-2105

Products Affected
No products.