CVE-2023-32228Medium
Share link
Anyone with the link can open this vulnerability.
A firmware bug which may lead to misinterpretation of data in the AMC2-4WCF and AMC2-2WCF allowing an adversary to grant access to the last…
CVSS
4.6
Medium
EPSS
0.00
p14
Published
2023-01-01
Updated
2023-01-01
Description
A firmware bug which may lead to misinterpretation of data in the AMC2-4WCF and AMC2-2WCF allowing an adversary to grant access to the last authorized user.
Tags · CWE
CWE-115
CWE-115BaseIncomplete
Misinterpretation of Input
The product misinterprets an input, whether from an attacker or another product, in a security-relevant fashion.
https://cwe.mitre.org/data/definitions/115.html →Open in CWE collection →CVSS vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Timeline
2023-01-01
Published
2023-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: P
Physical (P)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: N
None (N)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: N
None (N)
Integrity Impact
I: H
High (H)
Availability Impact
A: N
None (N)
Exploit indicators
EPSS
0.002 · p14
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
No vulnerabilities match your filters.