{ "document": { "category": "csaf_security_advisory", "csaf_version": "2.0", "tracking": { "generator": { "date": "2025-03-26T12:19:53.373Z", "engine": { "version": "2.5.21", "name": "Secvisogram" } }, "id": "VDE-2022-023", "version": "1", "status": "final", "aliases": [ "VDE-2022-023" ], "revision_history": [ { "number": "1", "summary": "initial revision", "date": "2022-10-17T10:00:00.000Z" } ], "current_release_date": "2022-10-17T10:00:00.000Z", "initial_release_date": "2022-10-17T10:00:00.000Z" }, "lang": "en-GB", "title": "TRUMPF TruTops prone to improper access control", "acknowledgments": [ { "organization": "CERTVDE", "urls": [ "https://certvde.com" ], "summary": "coordination" } ], "distribution": { "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "notes": [ { "category": "summary", "title": "Summary", "text": "During the installation of specific TRUMPF Windows applications, privileged local users with default usernames and passwords are created. An adversary could use these users to access and compromise the affected Windows systems and, under certain circumstances, other network resources." }, { "category": "description", "title": "Impact", "text": "Privileged local users with default usernames and passwords can be used to access and compromise affected Windows PCs and possibly other network resources." }, { "category": "description", "title": "Remediation", "text": "Please contact your TRUMPF Service with the PR number 496330." } ], "publisher": { "contact_details": "product.security@trumpf.com", "category": "vendor", "name": "Trumpf SE + Co. KG", "namespace": "https://www.trumpf.com" }, "references": [ { "summary": "VDE-2022-023: TRUMPF TruTops prone to improper access control - HTML", "url": "https://certvde.com/de/advisories/VDE-2022-023/", "category": "self" }, { "category": "external", "summary": "CERT@VDE Security Advisories for ", "url": "https://certvde.com/en/advisories/vendor/trumpf/" }, { "summary": "VDE-2022-023: TRUMPF TruTops prone to improper access control - CSAF", "url": "https://trumpf.csaf-tp.certvde.com/.well-known/csaf/white/2022/vde-2022-023.json", "category": "self" } ] }, "product_tree": { "branches": [ { "category": "vendor", "name": "TRUMPF Werkzeugmaschinen SE + Co. KG", "branches": [ { "category": "product_family", "name": "Hardware", "branches": [ { "category": "product_name", "name": "Job Order Interface", "product": { "name": "Job Order Interface", "product_id": "CSAFPID-11001" } }, { "category": "product_name", "name": "Oseon", "product": { "name": "Oseon", "product_id": "CSAFPID-11002" } }, { "category": "product_name", "name": "TruTops Boost with option Graphic separation of cut parts", "product": { "name": "TruTops Boost with option Graphic separation of cut parts", "product_id": "CSAFPID-11003" } }, { "category": "product_name", "name": "TruTops Boost with option Inventory of sheets and remainder sheets", "product": { "name": "TruTops Boost with option Inventory of sheets and remainder sheets", "product_id": "CSAFPID-11004" } }, { "category": "product_name", "name": "TruTops Fab", "product": { "name": "TruTops Fab", "product_id": "CSAFPID-11005" } }, { "category": "product_name", "name": "TruTops Monitor", "product": { "name": "TruTops Monitor", "product_id": "CSAFPID-11006" } } ] }, { "category": "product_family", "name": "Firmware", "branches": [ { "category": "product_version", "name": "vers:all/*", "product": { "name": "Firmware vers:all/*", "product_id": "CSAFPID-21001" } }, { "category": "product_version_range", "name": "<=1.6", "product": { "name": "Firmware <=1.6", "product_id": "CSAFPID-21002" } } ] } ] } ], "relationships": [ { "category": "installed_on", "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-11001", "full_product_name": { "name": "Firmware vers:all/* installed on Job Order Interface", "product_id": "CSAFPID-31001" } }, { "category": "installed_on", "product_reference": "CSAFPID-21002", "relates_to_product_reference": "CSAFPID-11002", "full_product_name": { "name": "Firmware <=1.6 installed on Oseon", "product_id": "CSAFPID-31002" } }, { "category": "installed_on", "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-11003", "full_product_name": { "name": "Firmware vers:all/* installed on TruTops Boost with option Graphic separation of cut parts", "product_id": "CSAFPID-31003" } }, { "category": "installed_on", "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-11004", "full_product_name": { "name": "Firmware vers:all/* installed on TruTops Boost with option Inventory of sheets and remainder sheets", "product_id": "CSAFPID-31004" } }, { "category": "installed_on", "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-11005", "full_product_name": { "name": "Firmware vers:all/* installed on TruTops Fab", "product_id": "CSAFPID-31005" } }, { "category": "installed_on", "product_reference": "CSAFPID-21001", "relates_to_product_reference": "CSAFPID-11006", "full_product_name": { "name": "Firmware vers:all/* installed on TruTops Monitor", "product_id": "CSAFPID-31006" } } ], "product_groups": [ { "group_id": "CSAFGID-0001", "summary": "affected products", "product_ids": [ "CSAFPID-31001", "CSAFPID-31002", "CSAFPID-31003", "CSAFPID-31004", "CSAFPID-31005", "CSAFPID-31006" ] } ] }, "vulnerabilities": [ { "cve": "CVE-2022-2052", "title": "CVE-2022-2052", "product_status": { "known_affected": [ "CSAFPID-31001", "CSAFPID-31002", "CSAFPID-31003", "CSAFPID-31004", "CSAFPID-31005", "CSAFPID-31006" ] }, "scores": [ { "cvss_v3": { "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "temporalScore": 9.8, "temporalSeverity": "CRITICAL", "environmentalScore": 9.8, "environmentalSeverity": "CRITICAL" }, "products": [ "CSAFPID-31001", "CSAFPID-31002", "CSAFPID-31003", "CSAFPID-31004", "CSAFPID-31005", "CSAFPID-31006" ] } ], "notes": [ { "category": "summary", "text": "Multiple Trumpf Products in multiple versions use default privileged Windows users and passwords. An adversary may use these accounts to remotely gain full access to the system." } ], "remediations": [ { "category": "vendor_fix", "details": "Please contact your TRUMPF Service with the PR number 496330.", "group_ids": [ "CSAFGID-0001" ] } ], "cwe": { "id": "CWE-284", "name": "Improper Access Control" } } ] }