CVE-2022-29952

moderate-risk

Published 2022-07-26

Bently Nevada condition monitoring equipment through 2022-04-29 mishandles authentication. It utilizes the TDI command and data protocols (60005/TCP, 60007/TCP) for communications between the monitoring controller and System 1 and/or Bently Nevada Monitor Configuration (BNMC) software. These protocols provide configuration management and historical data related functionality. Neither protocol has any authentication features, allowing any attacker capable of communicating with the ports in question to invoke (a subset of) desired functionality.

Do I need to act?

0.27% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.1/10 Critical

NETWORK / LOW complexity

Affected Products (4)

Bently Nevada 3701\/40 Firmware

Bently Nevada 3701\/44 Firmware

Bently Nevada 3701\/46 Firmware

Bently Nevada 60M100 Firmware

Affected Vendors

Bakerhughes

References (4)

Mitigation https://www.cisa.gov/uscert/ics/advisories/icsa-22-188-02

Third Party Advisory https://www.forescout.com/blog/

Mitigation https://www.cisa.gov/uscert/ics/advisories/icsa-22-188-02

Third Party Advisory https://www.forescout.com/blog/

/ 100

moderate-risk

Severity 31/34 · Critical

Exploitability 1/34 · Minimal

Exposure 10/34 · Low