← back
CVE-2022-21798

ICSA-22-053-02 GE Proficy CIMPLICITY-Cleartext

CVSS 7.5 HIGHEPSS 0.6%CWE-319
The affected product is vulnerable due to cleartext transmission of credentials seen in the CIMPLICITY network, which can be easily spoofed and used to log in to make operational changes to the system.
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
General Electric · Proficy CIMPLICITY

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.cisa.gov/uscert/ics/advisories/icsa-22-053-02