Lucene search
HistoryOct 21, 2022 - 4:15 p.m.
CVE-2022-1066
aethon tug server
unauthenticated access
hashed credentials
8.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
0.001 Low
EPSS
Percentile
27.4%
Aethon TUG Home Base Server versions prior to version 24 are affected by un unauthenticated attacker who can freely access hashed user credentials.
Affected configurations
Node
aethontug_home_base_serverRange<24
Related
cve
cve
CVE-2022-1066
2022-10-21 16:15:10
prion
prion
Default credentials
2022-10-21 16:15:00
cvelist
cvelist
CVE-2022-1066 MISSING AUTHORIZATION CWE-862
2022-04-12 00:00:00
thn
thn
JekyllBot:5 Flaws Let Attackers Take Control of Aethon TUG Hospital Robots
2022-04-15 11:51:00
ics
ics
Aethon TUG Home Base Server
2022-04-12 12:00:00
8.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
0.001 Low
EPSS
Percentile
27.4%
Related for NVD:CVE-2022-1066