CVE-2022-2242

KUKA V/KSS WoV SH access control vulnerability

CVSS 9.8 CRITICALEPSS 0.9%CWE-306

The KUKA SystemSoftware V/KSS in versions prior to 8.6.5 is prone to improper access control as an unauthorized attacker can directly read and write robot configurations when access control is not available or not enabled (default).

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Productos afectados

KUKA · SystemSoftware V/KSS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.kuka.com/advisories-CVE-2022-2242