CVE-2022-29953

The Bently Nevada 3700 series of condition monitoring equipment through 2022-04-29 has a maintenance interface on port 4001/TCP with undocumented, hardcoded credentials. An attacker capable of connecting to this interface can thus trivially take over its functionality.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-188-02 Mitigation Third Party Advisory
https://www.forescout.com/blog/ Third Party Advisory
Configurations

Configuration 1


Information

Published : 2022-07-26 10:15

Updated : 2022-08-02 08:50


NVD link : CVE-2022-29953

Mitre link : CVE-2022-29953

Products Affected
No products.
CWE