CVE-2022-43442

Опубликовано: 05 дек. 2022

Источник: nvd

CVSS3: 4.6

EPSS Низкий

Описание

Plaintext storage of a password vulnerability exists in +F FS040U software versions v2.3.4 and earlier, which may allow an attacker to obtain the login password of +F FS040U and log in to the management console.

Ссылки

https://jvn.jp/en/jp/JVN74285622/index.html
Third Party Advisory
https://www.fsi.co.jp/mobile/plusF/news/22102801.html
Vendor Advisory
https://www.fsi.co.jp/mobile/plusF/news/22102802.html
Not Applicable
Vendor Advisory
https://www.fsi.co.jp/mobile/plusF/news/22102803.html
Not Applicable
Vendor Advisory
https://www.fsi.co.jp/mobile/plusF/news/22102804.html
Not Applicable
Vendor Advisory
https://jvn.jp/en/jp/JVN74285622/index.html
Third Party Advisory
https://www.fsi.co.jp/mobile/plusF/news/22102801.html
Vendor Advisory
https://www.fsi.co.jp/mobile/plusF/news/22102802.html
Not Applicable
Vendor Advisory
https://www.fsi.co.jp/mobile/plusF/news/22102803.html
Not Applicable
Vendor Advisory
https://www.fsi.co.jp/mobile/plusF/news/22102804.html
Not Applicable
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:fsi:fs040u_firmware:*:*:*:*:*:*:*:*

Версия до 2.3.4 (включая)

cpe:2.3:h:fsi:fs040u:-:*:*:*:*:*:*:*

EPSS

Процентиль: 27%

0.00094

Низкий

4.6 Medium

CVSS3

Дефекты

CWE-522

Связанные уязвимости

GHSA-8m8p-mfww-c2cg