Lucene search
MitreCVE-2022-44929HistoryDec 02, 2022 - 3:15 a.m.
CVE-2022-44929
2022-12-0203:15:09
mitre
web.nvd.nist.gov
33
cve-2022-44929
access control
d-link
dvg-g5402sp
ge_1.03
privilege escalation
voip sib profiles
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0.003
Percentile
71.6%
An access control issue in D-Link DVG-G5402SP GE_1.03 allows unauthenticated attackers to escalate privileges via arbitrarily editing VoIP SIB profiles.
Affected configurations
Node
d-linkdvg-g5402sp_firmwareMatchge_1.03
d-linkdvg-g5402spMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| d-link | dvg-g5402sp_firmware | ge_1.03 | cpe:2.3:o:d-link:dvg-g5402sp_firmware:ge_1.03:*:*:*:*:*:*:* |
| d-link | dvg-g5402sp | - | cpe:2.3:h:d-link:dvg-g5402sp:-:*:*:*:*:*:*:* |
Related
cnvd
cnvd
D-Link DVG-G5402SP Access Control Error Vulnerability
2022-12-06 00:00:00
prion
prion
Design/Logic Flaw
2022-12-02 03:15:00
cvelist
cvelist
CVE-2022-44929
2022-12-02 00:00:00
nvd
nvd
CVE-2022-44929
2022-12-02 03:15:09
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.6
Confidence
High
EPSS
0.003
Percentile
71.6%
Related for CVE-2022-44929