Lucene search
HistorySep 19, 2023 - 1:16 p.m.
CVE-2022-47555
cve-2022-47555
command injection
ekorccp
ekorrci
authenticated attacker
new users
elevated privileges
backdoor
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
9.5
Confidence
High
EPSS
0.001
Percentile
43.3%
Operating system command injection in ekorCCP and ekorRCI, which could allow an authenticated attacker to execute commands, create new users with elevated privileges or set up a backdoor.
Affected configurations
Node
ormazabalekorrci_firmwareMatch601j
ormazabalekorrciMatch-
Node
ormazabalekorccp_firmwareMatch601j
ormazabalekorccpMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ormazabal | ekorrci_firmware | 601j | cpe:2.3:o:ormazabal:ekorrci_firmware:601j:*:*:*:*:*:*:* |
| ormazabal | ekorrci | - | cpe:2.3:h:ormazabal:ekorrci:-:*:*:*:*:*:*:* |
| ormazabal | ekorccp_firmware | 601j | cpe:2.3:o:ormazabal:ekorccp_firmware:601j:*:*:*:*:*:*:* |
| ormazabal | ekorccp | - | cpe:2.3:h:ormazabal:ekorccp:-:*:*:*:*:*:*:* |
Related
vulnrichment
vulnrichment
prion
prion
Command injection
2023-09-19 13:16:00
cvelist
cvelist
cve
cve
CVE-2022-47555
2023-09-19 13:16:20
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
9.5
Confidence
High
EPSS
0.001
Percentile
43.3%
Related for NVD:CVE-2022-47555