CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-22315

Snap One Wattbox WB-300-IP-3 versions WB10.9a17 and prior use a proprietary local area network (LAN) protocol that does not verify updates to the device. An attacker could upload a malformed update file to the device and execute arbitrary code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.6%

CVSS Severity

CVSS v3 Score 6.7

References

https://www.cisa.gov/uscert/ics/advisories/icsa-23-026-03
https://www.cisa.gov/uscert/ics/advisories/icsa-23-026-03

Products affected by CVE-2023-22315

Snapav » Wattbox Wb-300-Ip-3 » Version: N/A

cpe:2.3:h:snapav:wattbox_wb-300-ip-3:-
Snapav » Wattbox Wb-300-Ip-3 Firmware » Version: N/A

cpe:2.3:o:snapav:wattbox_wb-300-ip-3_firmware:-
Snapav » Wattbox Wb-300-Ip-3 Firmware » Version: wb10.9a17

cpe:2.3:o:snapav:wattbox_wb-300-ip-3_firmware:wb10.9a17

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-22315

Products

Pricing

Contact Us