Published: 29/11/2022 Updated: 08/08/2023

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

An access control issue in APsystems ENERGY COMMUNICATION UNIT (ECU-C) Power Control Software V4.1NA, V3.11.4, W2.1NA, V4.1SAA, C1.2.2 allows malicious users to access sensitive data and execute specific commands and functions with full admin rights without authenticating allows him to perform multiple attacks, such as attacking wireless network in the product's range.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apsystems ecu-c_firmware c1.2.2
apsystems ecu-c_firmware v3.11.4
apsystems ecu-c_firmware v4.1na
apsystems ecu-c_firmware v4.1saa
apsystems ecu-c_firmware w2.1na

Critical Infrastructure Sectors: Energy

NVD-CWE-Other https://cyber-guy.gitbook.io/cyber-guys-blog/pocs/cve-2022-44037 https://nvd.nist.gov https://www.cisa.gov/news-events/ics-advisories/icsa-24-023-01

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-44037

Vulnerability Summary

Vulnerability Trend

ICS Advisories

References

Vulmon Search

About

Products

Connect