Vulnerability Details CVE-2022-23332
Command injection vulnerability in Manual Ping Form (Web UI) in Shenzhen Ejoin Information Technology Co., Ltd. ACOM508/ACOM516/ACOM532 609-915-041-100-020 allows a remote attacker to inject arbitrary code via the field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.035
EPSS Ranking 87.1%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 9.0
References
- http://en.ejointech.com/
- https://drive.google.com/drive/folders/1QRs6wos3mL9289TTUm98n5OmgBVrbYTx
- https://github.com/kyl3song/CVE/tree/main/CVE-2022-23332
- http://en.ejointech.com/
- https://drive.google.com/drive/folders/1QRs6wos3mL9289TTUm98n5OmgBVrbYTx
- https://github.com/kyl3song/CVE/tree/main/CVE-2022-23332
Products affected by CVE-2022-23332
-
cpe:2.3:h:ejointech:acom508:-
-
cpe:2.3:h:ejointech:acom516:-
-
cpe:2.3:h:ejointech:acom532:-
-
cpe:2.3:o:ejointech:acom508_firmware:-
-
cpe:2.3:o:ejointech:acom508_firmware:508-609-900-241-100-020
-
cpe:2.3:o:ejointech:acom516_firmware:-
-
cpe:2.3:o:ejointech:acom532_firmware:-
-
cpe:2.3:o:ejointech:acom532_firmware:508-609-900-241-100-020
-
cpe:2.3:o:ejointech:acom532_firmware:532-609-915-041-100-020