Lucene search
HistoryJul 27, 2022 - 9:15 p.m.
CVE-2022-35911
cve-2022-35911
denial of service
remote attackers
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.011
Percentile
85.1%
On Patlite NH-FB series devices through 1.46, remote attackers can cause a denial of service by omitting the query string. NOTE: the vendor’s perspective is that "omitting the query string does not cause a denial of service and the indicated event can not be reproduced.
Affected configurations
Node
patlitenhp-fb2Match-
patlitenhp-fb2_firmwareRange≤1.46
Node
patlitenhl-fb2Match-
patlitenhl-fb2_firmwareRange≤1.46
| Vendor | Product | Version | CPE |
|---|---|---|---|
| patlite | nhp-fb2 | - | cpe:2.3:h:patlite:nhp-fb2:-:*:*:*:*:*:*:* |
| patlite | nhp-fb2_firmware | * | cpe:2.3:o:patlite:nhp-fb2_firmware:*:*:*:*:*:*:*:* |
| patlite | nhl-fb2 | - | cpe:2.3:h:patlite:nhl-fb2:-:*:*:*:*:*:*:* |
| patlite | nhl-fb2_firmware | * | cpe:2.3:o:patlite:nhl-fb2_firmware:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2022-35911
2022-07-27 20:05:35
prion
prion
Design/Logic Flaw
2022-07-27 21:15:00
cve
cve
CVE-2022-35911
2022-07-27 21:15:08
packetstorm
packetstorm
Patlite 1.46 Buffer Overflow
2022-07-25 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.011
Percentile
85.1%
Related for NVD:CVE-2022-35911