← Back to CVEs
CVE-2022-3575
CRITICAL9.8
Description
Frauscher Sensortechnik GmbH FDS102 for FAdC R2 and FAdCi R2 v2.8.0 to v2.9.1 are vulnerable to malicious code upload without authentication by using the configuration upload function. This could lead to a complete compromise of the FDS102 device.
CVE Details
CVSS v3.1 Score9.8
SeverityCRITICAL
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published11/2/2022
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
frauscher:frauscher_diagnostic_system_102
Weaknesses (CWE)
CWE-434
References
https://www.frauscher.com/en/psirt(info@cert.vde.com)
https://www.frauscher.com/en/psirt(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.