CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-2757

Due to the lack of adequately implemented access-control rules, all versions Kingspan TMS300 CS are vulnerable to an attacker viewing and modifying the application settings without authenticating by accessing a specific uniform resource locator (URL) on the webserver.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.5%

CVSS Severity

CVSS v3 Score 9.8

References

https://www.cisa.gov/uscert/ics/advisories/icsa-22-256-04
https://www.cisa.gov/uscert/ics/advisories/icsa-22-256-04

Products affected by CVE-2022-2757

Kingspan » Tms300 Cs » Version: N/A

cpe:2.3:h:kingspan:tms300_cs:-
Kingspan » Tms300 Cs Firmware » Version: Any

cpe:2.3:o:kingspan:tms300_cs_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-2757

Products

Pricing

Contact Us