2 matches found
Emerson Ovation Missing Authentication for Critical Function (CVE-2022-29966)
The affected product has several protocols that have no authentication, which could allow an attacker to change controller configuration or cause a denial-of-service condition. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...
Emerson Ovation Insufficient Verification of Data Authenticity (CVE-2022-30267)
The affected product was found to have no authentication of firmware signing and relies on an insecure checksum for integrity. This could allow an attacker to push malicious firmware images, cause a denial-of-service condition, or achieve remote code execution. This plugin only works with...