Vulnerabilities > CVE-2022-22985 - Unspecified vulnerability in Ipcomm Ipdio Firmware 3.9

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
ipcomm

Summary

The absence of filters when loading some sections in the web application of the vulnerable device allows attackers to inject malicious code that will be interpreted when a legitimate user accesses the specific web section where the information is displayed. Injection can be done on specific parameters. The injected code is executed when a legitimate user attempts to review history.

Vulnerable Configurations

Part Description Count
OS
Ipcomm
1
Hardware
Ipcomm
1