Vulnerability: Improper Authentication in HEIDENHAIN Controller TNC 640

Vulnerability: Improper Authentication in HEIDENHAIN Controller TNC 640

CVE-2022-41648 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The HEIDENHAIN Controller TNC 640, version 340590 07 SP5, running HEROS 5.08.3 controlling the HARTFORD 5A-65E CNC machine is vulnerable to improper authentication, which may allow an attacker to deny service to the production line, steal sensitive data from the production line, and alter any products created by the production line.

Learn more about our Web Application Penetration Testing UK.