CVE-2022-28370
CVE-2022-28370 affects Verizon 5G Home LVSKIHP Outdoor Unit (ODU) version 3.33.101.0. The vulnerability is in the RPC endpoint crtc_fw_upgrade used for provisioning firmware updates, where the script /lib/functions/wnc_jsonsh/wnc_crtc_fw.sh performs no cryptographic validation of the firmware ima...