Lucene search
MitreCVE-2022-45938HistoryJun 02, 2023 - 4:15 a.m.
CVE-2022-45938
2023-06-0204:15:47
CWE-79
mitre
web.nvd.nist.gov
22
comcast
defined technologies
microeisbss
cve-2022-45938
stored xss
rce
privilege escalation
CVSS3
9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
AI Score
8.9
Confidence
High
EPSS
0.002
Percentile
57.7%
An issue was discovered in Comcast Defined Technologies microeisbss through 2021. An attacker can inject a stored XSS payload in the Device ID field under Inventory Management to achieve Remote Code Execution and privilege escalation…
Affected configurations
Node
xfinitycomcast_defined_technologies_microeisbssRange≤2021
| Vendor | Product | Version | CPE |
|---|---|---|---|
| xfinity | comcast_defined_technologies_microeisbss | * | cpe:2.3:a:xfinity:comcast_defined_technologies_microeisbss:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2022-45938
2023-06-02 00:00:00
prion
prion
Privilege escalation
2023-06-02 04:15:00
nvd
nvd
CVE-2022-45938
2023-06-02 04:15:47
CVSS3
9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
AI Score
8.9
Confidence
High
EPSS
0.002
Percentile
57.7%
Related for CVE-2022-45938