Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-40602
HistoryNov 22, 2022 - 2:15 a.m.

CVE-2022-40602

2022-11-2202:15:14
CWE-287
CWE-798
[email protected]
web.nvd.nist.gov
zyxel
lte3301-m209
firmware
remote attacker
pre-configured password
remote administration

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

71.9%

JSON

A flaw in the Zyxel LTE3301-M209 firmware verisons prior to V1.00(ABLG.6)C0 could allow a remote attacker to access the device using an improper pre-configured password if the remote administration feature has been enabled by an authenticated administrator.

Affected configurations

NVD
Node
zyxellte3301-m209Match-
AND
zyxellte3301-m209_firmwareRange<1.00\(ablg.6\)c0

Related

prion 1
cve 1
cnvd 1
cvelist 1
prion
prion
Design/Logic Flaw
2022-11-22 02:15:00
cve
cve
CVE-2022-40602
2022-11-22 02:15:14
cnvd
cnvd
Zyxel LTE3301-M209 Access Control Error Vulnerability
2022-11-24 00:00:00
cvelist
cvelist
CVE-2022-40602
2022-11-22 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

71.9%

JSON
Related for NVD:CVE-2022-40602
prion1cve1cnvd1cvelist1