CVE-2022-30997

Name of the Vulnerable Software and Affected Versions STARDOM FCN Controller and FCJ Controller versions R4.10 through R4.31

Description A use of hard-coded credentials issue exists, which may allow an attacker with administrative privilege to read or change configuration settings, or update the controller with tampered firmware. This could potentially give a remote attacker access to the device.

Recommendations For versions R4.10 through R4.31, consider disabling administrative access until a patch is available to prevent exploitation of the hard-coded credentials. Restrict access to configuration settings and firmware updates to minimize the risk of tampered firmware being installed. Avoid using the affected controllers with administrative privileges until the issue is resolved.