CVE-2022-43366
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
IP-COM EW9 V15.11.0.14(9732) allows unauthenticated attackers to access sensitive information via the checkLoginUser, ate, telnet, version, setDebugCfg, and boot interfaces.
Affected (1)
Products: Ip Com: Ew9 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 15.11.0.14 |
| Running on/with | Platform Versions |
|---|---|
Ip Com Ew9 | All versions |
References (2)
https://github.com/splashsc/IOT_Vulnerability_Discovery/blob/main/ip-com/4_information_disclosure.md
Source: cve@mitre.org
ExploitThird Party Advisory
https://github.com/splashsc/IOT_Vulnerability_Discovery/blob/main/ip-com/4_information_disclosure.md
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory
Timeline
No history available yet.