Vulnerability CVE-2022-29953


Published: 2022-07-26   Modified: 2022-07-27

Description:
The Bently Nevada 3700 series of condition monitoring equipment through 2022-04-29 has a maintenance interface on port 4001/TCP with undocumented, hardcoded credentials. An attacker capable of connecting to this interface can thus trivially take over its functionality.

 References:
https://www.cisa.gov/uscert/ics/advisories/icsa-22-188-02
https://www.forescout.com/blog/

Copyright 2026, cxsecurity.com

 

Back to Top