Vulnerability Details CVE-2022-47848
An issue was discovered in Bezeq Vtech NB403-IL version BZ_2.02.07.09.13.01 and Vtech IAD604-IL versions BZ_2.02.07.09.13.01, BZ_2.02.07.09.13T, and BZ_2.02.07.09.09T, allows remote attackers to gain sensitive information via rootDesc.xml page of the UPnP service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.4%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2022-47848
-
cpe:2.3:h:bezeq:vtech_iad604-il:-
-
cpe:2.3:h:bezeq:vtech_nb403-il:-
-
cpe:2.3:o:bezeq:vtech_iad604-il_firmware:bz_2.02.07.09.09t
-
cpe:2.3:o:bezeq:vtech_iad604-il_firmware:bz_2.02.07.09.13.01
-
cpe:2.3:o:bezeq:vtech_iad604-il_firmware:bz_2.02.07.09.13t
-
cpe:2.3:o:bezeq:vtech_nb403-il_firmware:bz_2.02.07.09.13.01