Vulnerability Details CVE-2022-40005
Intelbras WiFiber 120AC inMesh before 1-1-220826 allows command injection by authenticated users, as demonstrated by the /boaform/formPing6 and /boaform/formTracert URIs for ping and traceroute.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.051
EPSS Ranking 89.3%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2022-40005
-
cpe:2.3:h:intelbras:wifiber_120ac_inmesh:-
-
cpe:2.3:o:intelbras:wifiber_120ac_inmesh_firmware:1.1-220216