Vulnerability Details CVE-2022-45717
IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function. This vulnerability is exploited via a crafted GET request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.2%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2022-45717
-
cpe:2.3:h:ip-com:m50:-
-
cpe:2.3:o:ip-com:m50_firmware:15.11.0.33