Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2022-30627

Опубликовано: 18 июл. 2022
Источник: nvd
CVSS3: 5.7
CVSS3: 7.5
EPSS Низкий

Описание

This vulnerability affects all of the company's products that also include the FW versions: update_i90_cv2.021_b20210104, update_i50_v1.0.55_b20200509, update_x6_v2.1.2_b202001127, update_b5_v2.0.9_b20200706. This vulnerability makes it possible to extract from the FW the existing user passwords on their operating systems and passwords.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:chcnav:p5e_gnss_firmware:4.1:*:*:*:*:*:*:*
cpe:2.3:o:chcnav:p5e_gnss_firmware:4.2:*:*:*:*:*:*:*
cpe:2.3:o:chcnav:p5e_gnss_firmware:update_b5_v2.0.9_b20200706:*:*:*:*:*:*:*
cpe:2.3:o:chcnav:p5e_gnss_firmware:update_i50_v1.0.55_b20200509:*:*:*:*:*:*:*
cpe:2.3:o:chcnav:p5e_gnss_firmware:update_i90_cv2.021_b20210104:*:*:*:*:*:*:*
cpe:2.3:o:chcnav:p5e_gnss_firmware:update_x6_v2.1.2_b202001127:*:*:*:*:*:*:*
cpe:2.3:h:chcnav:p5e_gnss:-:*:*:*:*:*:*:*

EPSS

Процентиль: 32%
0.00126
Низкий

5.7 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-798

Связанные уязвимости

github логотип

GHSA-gpvf-rgjw-wr7j

CVSS3: 7.5
github
больше 3 лет назад

This vulnerability affects all of the company's products that also include the FW versions: update_i90_cv2.021_b20210104, update_i50_v1.0.55_b20200509, update_x6_v2.1.2_b202001127, update_b5_v2.0.9_b20200706. This vulnerability makes it possible to extract from the FW the existing user passwords on their operating systems and passwords.

EPSS

Процентиль: 32%
0.00126
Низкий

5.7 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-798