CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-41489

WAYOS LQ_09 22.03.17V was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to send crafted requests to the server from the affected device. This vulnerability is exploitable due to a lack of authentication in the component Usb_upload.htm.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.5%

CVSS Severity

CVSS v3 Score 8.1

References

Products affected by CVE-2022-41489

Wayos » Lq-04 » Version: N/A

cpe:2.3:h:wayos:lq-04:-
Wayos » Lq-05 » Version: N/A

cpe:2.3:h:wayos:lq-05:-
Wayos » Lq-06 » Version: N/A

cpe:2.3:h:wayos:lq-06:-
Wayos » Lq-07 » Version: N/A

cpe:2.3:h:wayos:lq-07:-
Wayos » Lq-08 » Version: N/A

cpe:2.3:h:wayos:lq-08:-
Wayos » Lq-09 » Version: N/A

cpe:2.3:h:wayos:lq-09:-
Wayos » Lq-04 Firmware » Version: 22.03.17

cpe:2.3:o:wayos:lq-04_firmware:22.03.17
Wayos » Lq-05 Firmware » Version: 22.03.17

cpe:2.3:o:wayos:lq-05_firmware:22.03.17
Wayos » Lq-06 Firmware » Version: 22.03.17

cpe:2.3:o:wayos:lq-06_firmware:22.03.17
Wayos » Lq-07 Firmware » Version: 22.03.17

cpe:2.3:o:wayos:lq-07_firmware:22.03.17
Wayos » Lq-08 Firmware » Version: 22.03.17

cpe:2.3:o:wayos:lq-08_firmware:22.03.17
Wayos » Lq-09 Firmware » Version: 22.03.17

cpe:2.3:o:wayos:lq-09_firmware:22.03.17

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-41489

Products

Pricing

Contact Us