MEDIUM🇬🇧 English

CVE-2022-25922

CVSS 6.1v3.1pub. 2022-03-10upd. 2024-11-21

Power Line Communications PLC4TRUCKS J2497 trailer brake controllers implement diagnostic functions which can be invoked by replaying J2497 messages. There is no authentication or authorization for these functions.

oryginał EN
CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
  • Hegemonelectronics Plc4trucks

    HW
    Hegemonelectronics
    wszystkie wersje
  • Hegemonelectronics Plc4trucks Firmware

    OS
    Hegemonelectronics
    j2497
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2022-26131CRITICAL9.3ten sam produkt

Power Line Communications PLC4TRUCKS J2497 trailer receivers are susceptible to remote RF induced signals.