CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-47559

Lack of device control over web requests in ekorCCP and ekorRCI, allowing an attacker to create customised requests to execute malicious actions when a user is logged in, affecting availability, privacy and integrity.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.6%

CVSS Severity

CVSS v3 Score 8.6

References

https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-ormazabal-products
https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-ormazabal-products

Products affected by CVE-2022-47559

Ormazabal » Ekorccp » Version: N/A

cpe:2.3:h:ormazabal:ekorccp:-
Ormazabal » Ekorrci » Version: N/A

cpe:2.3:h:ormazabal:ekorrci:-
Ormazabal » Ekorccp Firmware » Version: 601j

cpe:2.3:o:ormazabal:ekorccp_firmware:601j
Ormazabal » Ekorrci Firmware » Version: 601j

cpe:2.3:o:ormazabal:ekorrci_firmware:601j

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-47559

Products

Pricing

Contact Us