← Volver a CVEs
CVE-2022-33174
CRITICAL9.8
Descripcion
Power Distribution Units running on Powertek firmware (multiple brands) before 3.30.30 allows remote authorization bypass in the web interface. To exploit the vulnerability, an attacker must send an HTTP packet to the data retrieval interface (/cgi/get_param.cgi) with the tmpToken cookie set to an empty string followed by a semicolon. This bypasses an active session authorization check. This can be then used to fetch the values of protected sys.passwd and sys.su.name fields that contain the username and password in cleartext.
Detalles CVE
Puntuacion CVSS v3.19.8
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado6/13/2022
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
powertekpdus:basic_pdupowertekpdus:basic_pdu_firmwarepowertekpdus:piml_pdupowertekpdus:piml_pdu_firmwarepowertekpdus:pm_pdupowertekpdus:pm_pdu_firmwarepowertekpdus:smart_pimpowertekpdus:smart_pim_firmwarepowertekpdus:smart_pompowertekpdus:smart_pom_firmwarepowertekpdus:smart_pomspowertekpdus:smart_poms_firmwarepowertekpdus:smart_pospowertekpdus:smart_pos_firmware
Debilidades (CWE)
CWE-863
Referencias
https://gynvael.coldwind.pl/?lang=en&id=748(cve@mitre.org)
https://gynvael.coldwind.pl/?lang=en&id=748(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.