Vulnerability Details CVE-2022-44565
An improper access validation vulnerability exists in airMAX AC <8.7.11, airFiber 60/LR <2.6.2, airFiber 60 XG/HD <v1.0.0 and airFiber GBE <1.4.1 that allows a malicious actor to retrieve status and usage data from the UISP device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.9%
CVSS Severity
CVSS v3 Score 5.3
References
Products affected by CVE-2022-44565
-
cpe:2.3:h:ui:airfiber_60-hd:-
-
cpe:2.3:h:ui:airfiber_60-lr:-
-
cpe:2.3:h:ui:airfiber_60-xg:-
-
cpe:2.3:h:ui:airfiber_60:-
-
cpe:2.3:h:ui:airfiber_gigabeam:-
-
cpe:2.3:h:ui:airmax_ac:-
-
cpe:2.3:o:ui:airfiber_60-hd_firmware:*
-
cpe:2.3:o:ui:airfiber_60-lr_firmware:*
-
cpe:2.3:o:ui:airfiber_60-xg_firmware:*
-
cpe:2.3:o:ui:airfiber_60_firmware:*
-
cpe:2.3:o:ui:airfiber_gigabeam_firmware:*
-
cpe:2.3:o:ui:airmax_ac_firmware:7.1.3