Global Variable Exposure in Horner Automation's RCC 972 Firmware Version 15.40

CVE-2022-2642 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Horner Automation’s RCC 972 firmware version 15.40 contains global variables. This could allow an attacker to read out sensitive values and variable keys from the device.

Learn more about our Web Application Penetration Testing UK.