Lucene search

CVE-2022-42785

🗓️ 15 Nov 2022 21:38:15Reported by CERTVDEType

cve🔗 web.nvd.nist.gov📰️ 8 Media mentions👁 47 Views

W&T ComServer Series authentication bypass via crafted HTTP GET Request

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
Cvelist	CVE-2022-42785 Wiesemann & Theis: Authentication bypass in Com-Server family	10 Nov 202211:01	–	cvelist
Prion	Authentication flaw	15 Nov 202221:15	–	prion
Tenable Nessus	Wiesemann & Theis ComServer Series Missing Authentication for Critical Function (CVE-2022-42785)	30 Jan 202500:00	–	nessus
NVD	CVE-2022-42785	15 Nov 202221:15	–	nvd

Nvd

Node

wut at-modem-emulator_firmwareRange<1.48

AND

wut at-modem-emulatorMatch-

Node

wut com-server_++_firmwareRange<1.48

AND

wut com-server_++Match-

Node

wut com-server_20ma_firmwareRange<1.48

AND

wut com-server_20maMatch-

Node

wut com-server_highspeed_100basefx_firmwareRange<1.76

AND

wut com-server_highspeed_100basefxMatch-

Node

wut com-server_highspeed_100baselx_firmwareRange<1.76

AND

wut com-server_highspeed_100baselxMatch-

Node

wut com-server_highspeed_19"_1port_firmwareRange<1.76

AND

wut com-server_highspeed_19"_1portMatch-

Node

wut com-server_highspeed_19"_4port_firmwareRange<1.76

AND

wut com-server_highspeed_19"_4portMatch-

Node

wut com-server_highspeed_compact_firmwareRange<1.76

AND

wut com-server_highspeed_compactMatch-

Node

wut com-server_highspeed_industry_firmwareRange<1.76

AND

wut com-server_highspeed_industryMatch-

Node

wut com-server_highspeed_isolated_firmwareRange<1.76

AND

wut com-server_highspeed_isolatedMatch-

Node

wut com-server_highspeed_oem_firmwareRange<1.76

AND

wut com-server_highspeed_oemMatch-

Node

wut com-server_highspeed_office_1port_firmwareRange<1.76

AND

wut com-server_highspeed_office_1portMatch-

Node

wut com-server_highspeed_office_4port_firmwareRange<1.76

AND

wut com-server_highspeed_office_4portMatch-

Node

wut com-server_highspeed_poe_firmwareRange<1.76

AND

wut com-server_highspeed_poeMatch-

Node

wut com-server_highspeed_lc_firmwareRange<1.48

AND

wut com-server_highspeed_lcMatch-

Node

wut com-server_highspeed_ul_firmwareRange<1.48

AND

wut com-server_highspeed_ulMatch-

Node

wut com-server_highspeed_poe_3x_isolated_firmwareRange<1.48

AND

wut com-server_highspeed_poe_3x_isolatedMatch-

[
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server LC",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.48",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server PoE 3 x Isolated",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.48",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server 20mA",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.48",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server ++",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.48",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "AT-Modem-Emulator",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.48",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server UL",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.48",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server Highspeed 100BaseFX",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.76",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server Highspeed 100BaseLX",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.76",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server Highspeed Office 1 Port",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.76",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server Highspeed Office 4 Port",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.76",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server Highspeed Industry",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.76",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server Highspeed OEM",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.76",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server Highspeed Compact",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.76",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server Highspeed Isolated",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.76",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server Highspeed 19\" 1Port",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.76",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server Highspeed 19\" 4Port",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.76",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Com-Server Highspeed PoE",
    "vendor": "Wiesemann & Theis",
    "versions": [
      {
        "lessThan": "1.76",
        "status": "affected",
        "version": "1.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
cert	www.cert.vde.com/de/advisories/VDE-2022-043/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Nov 2022 21:15Current

9.7High risk

Vulners AI Score9.7

CVSS39.8

EPSS0.00175

CWE-306