CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
21.8%
MachineSense FeverWarn Raspberry Pi-based devices lack input sanitization, which could allow an attacker on an adjacent network to send a message running commands or could overflow the stack.
Vendor | Product | Version | CPE |
---|---|---|---|
machinesense | feverwarn_firmware | - | cpe:2.3:o:machinesense:feverwarn_firmware:-:*:*:*:*:*:*:* |
machinesense | feverwarn | - | cpe:2.3:h:machinesense:feverwarn:-:*:*:*:*:*:*:* |
[
{
"defaultStatus": "unaffected",
"product": "FeverWarn",
"vendor": "MachineSense",
"versions": [
{
"status": "affected",
"version": "ESP32"
},
{
"status": "affected",
"version": "RaspberryPi"
},
{
"status": "affected",
"version": "DataHub RaspberryPi"
}
]
}
]
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
21.8%