Lucene search

[email protected]NVD:CVE-2022-46658

HistoryMay 22, 2023 - 11:15 p.m.

CVE-2022-46658

2023-05-2223:15:09

[email protected]

web.nvd.nist.gov

vulnerability

buffer overflow

denial of service

remote code execution

stack-based

affected product

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.6 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.4%

JSON

The affected product is vulnerable to a stack-based buffer overflow which could lead to a denial of service or remote code execution.

Affected configurations

NVD

Node

dataprobeiboot-pdu4-n20_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu4-n20Match-

Node

dataprobeiboot-pdu4sa-n15_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu4sa-n15Match-

Node

dataprobeiboot-pdu4a-n15_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu4a-n15Match-

Node

dataprobeiboot-pdu4sa-n20_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu4sa-n20Match-

Node

dataprobeiboot-pdu4a-n20_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu4a-n20Match-

Node

dataprobeiboot-pdu8sa-n15_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8sa-n15Match-

Node

dataprobeiboot-pdu8a-n15_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8a-n15Match-

Node

dataprobeiboot-pdu8sa-2n15_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8sa-2n15Match-

Node

dataprobeiboot-pdu8a-2n15_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8a-2n15Match-

Node

dataprobeiboot-pdu8sa-n20_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8sa-n20Match-

Node

dataprobeiboot-pdu8a-n20_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8a-n20Match-

Node

dataprobeiboot-pdu8a-2n20_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8a-2n20Match-

Node

dataprobeiboot-pdu4-c20_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu4-c20Match-

Node

dataprobeiboot-pdu4a-c10_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu4a-c10Match-

Node

dataprobeiboot-pdu4sa-c10_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu4sa-c10Match-

Node

dataprobeiboot-pdu8a-c10_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8a-c10Match-

Node

dataprobeiboot-pdu8sa-c10_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8sa-c10Match-

Node

dataprobeiboot-pdu8a-2c20_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8a-2c20Match-

Node

dataprobeiboot-pdu4sa-c20_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu4sa-c20Match-

Node

dataprobeiboot-pdu4a-c20_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu4a-c20Match-

Node

dataprobeiboot-pdu8a-2c10_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8a-2c10Match-

Node

dataprobeiboot-pdu8a-c20_firmwareRange<1.42.06162022

AND

dataprobeiboot-pdu8a-c20Match-

References

dataprobe.com/support/iboot-pdu/local_upgrade_pdu_procedure.pdf

www.cisa.gov/news-events/ics-advisories/icsa-22-263-03

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.6 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.4%

JSON

Related for NVD:CVE-2022-46658

prion1 cvelist1 cve1 ics1