Skip to main content

Bently Nevada 3701 44 Firmware

2 CVEs product

Monthly

CVE-2022-29953 CRITICAL Act Now

The Bently Nevada 3700 series of condition monitoring equipment through 2022-04-29 has a maintenance interface on port 4001/TCP with undocumented, hardcoded credentials. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Bently Nevada 3701 40 Firmware Bently Nevada 3701 44 Firmware Bently Nevada 3701 46 Firmware Bently Nevada 60M100 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2022-29952 CRITICAL Act Now

Bently Nevada condition monitoring equipment through 2022-04-29 mishandles authentication. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Bently Nevada 3701 40 Firmware Bently Nevada 3701 44 Firmware Bently Nevada 3701 46 Firmware Bently Nevada 60M100 Firmware
NVD
CVSS 3.1
9.1
EPSS
0.9%
EPSS 1% CVSS 9.8
CRITICAL Act Now

The Bently Nevada 3700 series of condition monitoring equipment through 2022-04-29 has a maintenance interface on port 4001/TCP with undocumented, hardcoded credentials. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Bently Nevada 3701 40 Firmware Bently Nevada 3701 44 Firmware +2
NVD
EPSS 1% CVSS 9.1
CRITICAL Act Now

Bently Nevada condition monitoring equipment through 2022-04-29 mishandles authentication. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Bently Nevada 3701 40 Firmware Bently Nevada 3701 44 Firmware +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy