2 matches found
CVE-2022-2474
CVE-2022-2474 affects Haas Controller, version 100.20.000.1110, where the Ethernet Q Commands service lacks authentication. Any user on the same network segment (including remote connections) can access the service and write unauthorized macros to registers, enabling high-impact outcomes per ICS ...
CVE-2022-2474
Authentication is currently unsupported in Haas Controller version 100.20.000.1110 when using the “Ethernet Q Commands” service, which allows any user on the same network segment as the controller even while connected remotely to access the service and write unauthorized macros to the device...