3 matches found
CVE-2022-31480
An unauthenticated attacker could arbitrarily upload firmware files to the target device, ultimately causing a Denial-of-Service DoS. This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502, and EP4502 which contain firmware versions prior t...
CVE-2022-31480
CVE-2022-31480 is an unauthenticated denial-of-service in LenelS2 HID Mercury LNL-4420 panels through the web-based firmware update path. The Trellix investigations describe an unauthenticated firmware upload flow via view_FwUpdate.cgi where a properly signed and encrypted binary is required for ...
CVE-2022-31480 Unauthenticated Firmware Upload and Arbitrary Reboot
An unauthenticated attacker could arbitrarily upload firmware files to the target device, ultimately causing a Denial-of-Service DoS. This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502, and EP4502 which contain firmware versions prior t...