CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2022-4126 – Use of Default Password
https://notcve.org/view.php?id=CVE-2022-4126
27 Mar 2023 — Use of Default Password vulnerability in ABB RCCMD on Windows, Linux, MacOS allows Try Common or Default Usernames and Passwords.This issue affects RCCMD: before 4.40 230207. • https://search.abb.com/library/Download.aspx?DocumentID=2CMT006099_EN&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-287: Improper Authentication CWE-1393: Use of Default Password •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-26041
https://notcve.org/view.php?id=CVE-2022-26041
13 Jun 2022 — Directory traversal vulnerability in RCCMD 4.26 and earlier allows a remote authenticated attacker with an administrative privilege to read or alter an arbitrary file on the server via unspecified vectors. Una vulnerabilidad de salto de directorio en RCCMD versiones 4.26 y anteriores, permite a un atacante remoto autenticado con un privilegio administrativo leer o alterar un archivo arbitrario en el servidor por medio de vectores no especificados • https://jvn.jp/en/jp/JVN60801132/index.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •