Vulnerability Details CVE-2022-22512
Hard-coded credentials in Web-UI of multiple VARTA Storage products in multiple versions allows an unauthorized attacker to gain administrative access to the Web-UI via network.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.0%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2022-22512
-
cpe:2.3:h:varta:element_backup:-
-
cpe:2.3:h:varta:element_s1:-
-
cpe:2.3:h:varta:element_s2:-
-
cpe:2.3:h:varta:element_s3:-
-
cpe:2.3:h:varta:element_s4:-
-
cpe:2.3:h:varta:one_l:-
-
cpe:2.3:h:varta:one_xl:-
-
cpe:2.3:h:varta:pulse:-
-
cpe:2.3:o:varta:element_backup_firmware:-
-
cpe:2.3:o:varta:element_s1_firmware:-
-
cpe:2.3:o:varta:element_s2_firmware:-
-
cpe:2.3:o:varta:element_s3_firmware:*
-
cpe:2.3:o:varta:element_s3_firmware:-
-
cpe:2.3:o:varta:element_s4_firmware:-
-
cpe:2.3:o:varta:one_l_firmware:-
-
cpe:2.3:o:varta:one_xl_firmware:-
-
cpe:2.3:o:varta:pulse_firmware:-