CVE-2022-2474

Authentication is currently unsupported in Haas Controller version 100.20.000.1110 when using the “Ethernet Q Commands” service, which allows any user on the same network segment as the controller (even while connected remotely) to access the service and write unauthorized macros to the device.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01	Third Party Advisory US Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01	Third Party Advisory US Government Resource

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:haascnc:haas_controller_firmware:100.20.000.1110:*:*:*:*:*:*:*

cpe:2.3:h:haascnc:haas_controller:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:01

Type	Values Removed	Values Added
References	~~() https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01 - Third Party Advisory, US Government Resource~~	() https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01 - Third Party Advisory, US Government Resource
CVSS	v2 : ~~unknown~~ v3 : ~~8.0~~	v2 : unknown v3 : 9.8

02 Nov 2022, 15:44

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.0
CWE		CWE-306
References	~~(MISC) https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01 -~~	(MISC) https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01 - Third Party Advisory, US Government Resource
CPE		cpe:2.3:h:haascnc:haas_controller:-:::::::* cpe:2.3:o:haascnc:haas_controller_firmware:100.20.000.1110:::::::*

28 Oct 2022, 18:22

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-10-28 18:15

Updated : 2024-11-21 07:01

NVD link : CVE-2022-2474

Mitre link : CVE-2022-2474

CVE.ORG link : CVE-2022-2474

JSON object : View

Products Affected

haascnc

haas_controller_firmware
haas_controller

CWE

CWE-306

Missing Authentication for Critical Function

{"id": "CVE-2022-2474", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "ics-cert@hq.dhs.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.1}]}, "published": "2022-10-28T18:15:11.337", "references": [{"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01", "tags": ["Third Party Advisory", "US Government Resource"], "source": "ics-cert@hq.dhs.gov"}, {"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-01", "tags": ["Third Party Advisory", "US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "ics-cert@hq.dhs.gov", "description": [{"lang": "en", "value": "CWE-306"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-306"}]}], "descriptions": [{"lang": "en", "value": "Authentication is currently unsupported in Haas Controller version 100.20.000.1110 when using the \u201cEthernet Q Commands\u201d service, which allows any user on the same network segment as the controller (even while connected remotely) to access the service and write unauthorized macros to the device."}, {"lang": "es", "value": "Actualmente, la autenticaci\u00f3n no es compatible con la versi\u00f3n 100.20.000.1110 de Haas Controller cuando se utiliza el servicio \u201cEthernet Q Commands\u201d, que permite a cualquier usuario en el mismo segmento de red que el controlador (incluso mientras est\u00e1 conectado de forma remota) acceder al servicio y escribir macros no autorizadas en el dispositivo."}], "lastModified": "2024-11-21T07:01:03.947", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:haascnc:haas_controller_firmware:100.20.000.1110:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6DC9BA96-106A-4C7D-A89E-C2DE29429386"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:haascnc:haas_controller:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C6C8F5BC-97B7-4EDC-AF26-3F6971537DC9"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ics-cert@hq.dhs.gov"}