Vulnerability Details CVE-2022-30627
This vulnerability affects all of the company's products that also include the FW versions: update_i90_cv2.021_b20210104, update_i50_v1.0.55_b20200509, update_x6_v2.1.2_b202001127, update_b5_v2.0.9_b20200706. This vulnerability makes it possible to extract from the FW the existing user passwords on their operating systems and passwords.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.7%
CVSS Severity
CVSS v3 Score 5.7
Products affected by CVE-2022-30627
-
cpe:2.3:h:chcnav:p5e_gnss:-
-
cpe:2.3:o:chcnav:p5e_gnss_firmware:4.1
-
cpe:2.3:o:chcnav:p5e_gnss_firmware:4.2
-
cpe:2.3:o:chcnav:p5e_gnss_firmware:update_b5_v2.0.9_b20200706
-
cpe:2.3:o:chcnav:p5e_gnss_firmware:update_i50_v1.0.55_b20200509
-
cpe:2.3:o:chcnav:p5e_gnss_firmware:update_i90_cv2.021_b20210104
-
cpe:2.3:o:chcnav:p5e_gnss_firmware:update_x6_v2.1.2_b202001127