CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-47554

Exposure of sensitive information in ekorCCP and ekorRCI, potentially allowing a remote attacker to obtain critical information from various .xml files, including .xml files containing credentials, without being authenticated within the web server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.8%

CVSS Severity

CVSS v3 Score 8.2

References

https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-ormazabal-products
https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-ormazabal-products

Products affected by CVE-2022-47554

Ormazabal » Ekorccp » Version: N/A

cpe:2.3:h:ormazabal:ekorccp:-
Ormazabal » Ekorrci » Version: N/A

cpe:2.3:h:ormazabal:ekorrci:-
Ormazabal » Ekorccp Firmware » Version: 601j

cpe:2.3:o:ormazabal:ekorccp_firmware:601j
Ormazabal » Ekorrci Firmware » Version: 601j

cpe:2.3:o:ormazabal:ekorrci_firmware:601j

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-47554

Products

Pricing

Contact Us