Unrated severityNVD Advisory· Published Jun 24, 2022· Updated Apr 16, 2025
3.2.5 CLEARTEXT TRANSMISSION OF SENSITIVE INFORMATION CWE-319
CVE-2022-1524
Description
LRM version 2.4 and lower does not implement TLS encryption. A malicious actor can MITM attack sensitive data in-transit, including credentials.
Affected products
1- Range: LRM Versions 1.3 to 3.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.cisa.gov/uscert/ics/advisories/icsa-22-153-02mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.