Vulnerability Details CVE-2022-30623
The server checks the user's cookie in a non-standard way, and a value is entered in the cookie value name of the status and its value is set to true to bypass the identification with the system using a username and password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.7%
CVSS Severity
CVSS v3 Score 5.9
References
Products affected by CVE-2022-30623
-
cpe:2.3:h:chcnav:p5e_gnss:-
-
cpe:2.3:o:chcnav:p5e_gnss_firmware:4.1
-
cpe:2.3:o:chcnav:p5e_gnss_firmware:4.2