Lucene search
HistoryDec 02, 2022 - 3:15 a.m.
CVE-2022-44929
cve-2022-44929
access control
d-link
dvg-g5402sp
ge_1.03
privilege escalation
voip sib profiles
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.6 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
71.7%
An access control issue in D-Link DVG-G5402SP GE_1.03 allows unauthenticated attackers to escalate privileges via arbitrarily editing VoIP SIB profiles.
Affected configurations
Node
d-linkdvg-g5402sp_firmwareMatchge_1.03
d-linkdvg-g5402spMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| d-link:dvg-g5402sp_firmware | d-link dvg-g5402sp firmware | eq | ge_1.03 |
Related
cnvd
cnvd
D-Link DVG-G5402SP Access Control Error Vulnerability
2022-12-06 00:00:00
prion
prion
Design/Logic Flaw
2022-12-02 03:15:00
cvelist
cvelist
CVE-2022-44929
2022-12-02 00:00:00
nvd
nvd
CVE-2022-44929
2022-12-02 03:15:09
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.6 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
71.7%
Related for CVE-2022-44929