Lucene search
HistoryOct 03, 2023 - 12:15 p.m.
CVE-2022-47892
netman 204
unauthenticated
remote file read
sensitive information
credentials
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
44.6%
All versions of NetMan 204 could allow an unauthenticated remote attacker to read a file (config.cgi) containing sensitive information, like credentials.
Affected configurations
Node
riello-upsnetman_204_firmware
riello-upsnetman_204Match-
Related
prion
prion
Information disclosure
2023-10-03 12:15:00
cvelist
cvelist
CVE-2022-47892 Information disclosure in NetMan 204
2023-10-03 11:27:05
cve
cve
CVE-2022-47892
2023-10-03 12:15:10
kitploit
kitploit
Thunderstorm - Modular Framework To Exploit UPS Devices
2023-03-06 11:30:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
44.6%
Related for NVD:CVE-2022-47892