← Retour aux CVEs
CVE-2022-44039
CRITICAL9.8
Description
Franklin Fueling System FFS Colibri 1.9.22.8925 is affected by: File system overwrite. The impact is: File system rewrite (remote). ¶¶ An attacker can overwrite system files like [system.conf] and [passwd], this occurs because the insecure usage of "fopen" system function with the mode "wb" which allows overwriting file if exists. Overwriting files such as passwd, allows an attacker to escalate his privileges by planting backdoor user with root privilege or change root password.
Details CVE
Score CVSS v3.19.8
SeveriteCRITICAL
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie12/5/2022
Derniere modification4/24/2025
Sourcenvd
Observations honeypot0
Produits affectes
franklinfueling:colibri_firmware
Faiblesses (CWE)
CWE-863CWE-863
References
https://pastebin.com/raw/64stbsWu(cve@mitre.org)
https://pastebin.com/raw/64stbsWu(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.