Multiple Version of TRUMPF TruTops products expose a service function without necessary authentication. Execution of this function may result in unauthorized access to change of data or disruption of the whole service.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HTrumpf Trutops Boost
APPTrumpf13.08.2113.01 – 13.05Trumpf Trutops Fab
APPTrumpf22.08.2122.01 – 22.05Trumpf Trutops Monitor
APPTrumpf22.08.2122.01 – 22.05
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
Related vulnerabilities
CVE-2022-2052CRITICAL9.8ten sam produkt
Multiple Trumpf Products in multiple versions use default privileged Windows users and passwords. An adversary...
CVE-2023-3935CRITICAL9.8ten sam vendor
A heap buffer overflow vulnerability in Wibu CodeMeter Runtime network service up to version 7.60b allows an u...