Cleartext Transmission Vulnerability in Haas Controller Version 100.20.000.1110

CVE-2022-41636 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Communication traffic involving "Ethernet Q Commands" service of Haas Controller version 100.20.000.1110 is transmitted in cleartext. This allows an attacker to obtain sensitive information being passed to and from the controller.

Learn more about our Web Application Penetration Testing UK.