CVE-2022-1300

Multiple Version of TRUMPF TruTops products expose a service function without necessary authentication. Execution of this function may result in unauthorized access to change of data or disruption of the whole service.

Published: May 2, 2022
Updated: May 4, 2025
CVE: CVE-2022-1300
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-306

Affected Software
References

Software	From	Fixed in
trumpf / trutops_monitor	22.08.21	22.08.21.x
trumpf / trutops_monitor	22.01	22.05.x
trumpf / trutops_fab	22.01	22.05.x
trumpf / trutops_fab	22.08.21	22.08.21.x
trumpf / trutops_boost	13.01	13.05.x
trumpf / trutops_boost	13.08.21	13.08.21.x

https://cert.vde.com/en/advisories/VDE-2022-016/

Vulnerability Database

290,206

CVE-2022-1300