CVE-2022-2052 Multiple Trumpf Products in multiple versions use default privileged Windows users and passwords

These default accounts are found in all Trumpf systems: RAC, RCC, RCC Remote, RCC Enterprise, RCC Virtual, RCC Remote, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Remote, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote, RCC Enterprise, RCC Remote

RAC

RAC stands for Remote Administration Console. It is a web-based remote management tool that allows real-time remote access of a Trumpf system.

It is important to identify and disable the default accounts. These accounts are found in all Trumpf systems: RAC, RCC, RCC Remote, RCC Enterprise, RCC Virtual, RCC Remote, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise, RCC Virtual, RCC Enterprise,
ROC Remote (or any version), and any version of a C or V series system. The accounts listed above can be disabled individually. However they should all be disabled as part of this process.

Timeline

Published on: 10/17/2022 09:15:00 UTC

References