Lucene search

[email protected]NVD:CVE-2022-45710

HistoryDec 23, 2022 - 7:15 p.m.

CVE-2022-45710

2022-12-2319:15:11

CWE-120

[email protected]

web.nvd.nist.gov

ip-com buffer overflows formsetdebugcfg

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

61.3%

JSON

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function.

Affected configurations

Nvd

Node

ip-comm50_firmwareMatch15.11.0.33

AND

ip-comm50Match-

VendorProductVersionCPE
ip-comm50_firmware15.11.0.33cpe:2.3:o:ip-com:m50_firmware:15.11.0.33:*:*:*:*:*:*:*
ip-comm50-cpe:2.3:h:ip-com:m50:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ip-com	m50_firmware	15.11.0.33	cpe:2.3:o:ip-com:m50_firmware:15.11.0.33:::::::*
ip-com	m50	-	cpe:2.3:h:ip-com:m50:-:::::::*

References

hackmd.io/%40AAN506JzR6urM5U8fNh1ng/B1XG-5iSo

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

61.3%

JSON

Related for NVD:CVE-2022-45710

cve1 prion1 cvelist1