CVE-2021-22644

CVSS V2 None CVSS V3 Critical 9.8

Ovarro TBox TWinSoft uses the custom hardcoded user “TWinSoft” with a hardcoded key.

CWE	URL
CWE-798	http://cwe.mitre.org/data/definitions/798.html

CPE	Vulnerable	Operator	Version End
		AND
cpe:2.3:a:ovarro:twinsoft::::::::	1	OR	12.4
		AND
cpe:2.3:o:ovarro:tbox_lt2-530_firmware::::::::	1	OR	1.46
cpe:2.3:h:ovarro:tbox_lt2-530:-:::::::*	0	OR
		AND
cpe:2.3:o:ovarro:tbox_lt2-532_firmware::::::::	1	OR	1.46
cpe:2.3:h:ovarro:tbox_lt2-532:-:::::::*	0	OR
		AND
cpe:2.3:o:ovarro:tbox_lt2-540_firmware::::::::	1	OR	1.46
cpe:2.3:h:ovarro:tbox_lt2-540:-:::::::*	0	OR
		AND
cpe:2.3:o:ovarro:tbox_ms-cpu32_firmware::::::::	1	OR	1.46
cpe:2.3:h:ovarro:tbox_ms-cpu32:-:::::::*	0	OR
		AND
cpe:2.3:o:ovarro:tbox_ms-cpu32-s2_firmware::::::::	1	OR	1.46
cpe:2.3:h:ovarro:tbox_ms-cpu32-s2:-:::::::*	0	OR
		AND
cpe:2.3:o:ovarro:tbox_rm2_firmware::::::::	1	OR	1.46
cpe:2.3:h:ovarro:tbox_rm2:-:::::::*	0	OR
		AND
cpe:2.3:o:ovarro:tbox_tg2_firmware::::::::	1	OR	1.46
cpe:2.3:h:ovarro:tbox_tg2:-:::::::*	0	OR

Reference URL	Reference Tags
https://www.cisa.gov/uscert/ics/advisories/icsa-21-054-04

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2021-22644
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22644

Created	Old Value	New Value	Data Type	Notes
2022-07-28 16:00:30				Added to TrackCVE