CVE-2022-2642

Name of the Vulnerable Software and Affected Versions Horner Automation’s RCC 972 firmware version 15.40

Description The issue concerns the presence of global variables in the firmware, which could allow an attacker to read out sensitive values and variable keys from the device.

Recommendations For version 15.40, consider restricting access to the device to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.