Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-31808


A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V2.85.44), SiPass integrated ACC-AP (All versions < V2.85.43). Affected devices improperly sanitize user input on the telnet command line interface. This could allow an authenticated user to escalate privileges by injecting arbitrary commands that are executed with root privileges.


Published

2023-02-14T11:15:12.700

Last Modified

2024-11-21T07:05:22.323

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

Weaknesses
  • Type: Primary
    CWE-20

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System siemens sipass_integrated_acc-ap_firmware < 2.85.43 Yes
Hardware siemens sipass_integrated_acc-ap - No
Operating System siemens sipass_integrated_ac5102_\(acc-g2\)_firmware < 2.85.44 Yes
Hardware siemens sipass_integrated_ac5102_\(acc-g2\) - No

References