PT-2022-26006 · Daikin · Daikin Svmpc1+1
Chizuru Toyama
·
Published
2022-12-13
·
Updated
2023-07-10
·
CVE-2022-41653
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Daikin SVMPC1 versions 2.1.22 and prior
Daikin SVMPC2 versions 1.2.3 and prior
Description
The issue allows an attacker to obtain user login credentials and control the system.
Recommendations
For Daikin SVMPC1 versions 2.1.22 and prior, update to a version later than 2.1.22 to resolve the issue.
For Daikin SVMPC2 versions 1.2.3 and prior, update to a version later than 1.2.3 to resolve the issue.
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Daikin Svmpc1
Daikin Svmpc2