9.8
CVE-2022-32985
- EPSS 0.61%
- Veröffentlicht 17.07.2022 23:15:09
- Zuletzt bearbeitet 21.11.2024 07:07:21
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Loginlibnx_apl.so on Nexans FTTO GigaSwitch before 6.02N and 7.x before 7.02 implements a Backdoor Account for SSH logins on port 50200 or 50201.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Nexans ≫ Gigaswitch 641 Desk V5 Sfp-vi Firmware Version < 6.02n
Nexans ≫ Gigaswitch 641 Desk V5 Sfp-vi Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch 642 Desk V5 Sfp-2vi Firmware Version < 6.02n
Nexans ≫ Gigaswitch 642 Desk V5 Sfp-2vi Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch V5 2tp(pd-f+) Sfp-vi 54vdc Firmware Version < 6.02n
Nexans ≫ Gigaswitch V5 2tp(pd-f+) Sfp-vi 54vdc Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch V5 2tp(pse+) Sfp-vi 54vdc Firmware Version < 6.02n
Nexans ≫ Gigaswitch V5 2tp(pse+) Sfp-vi 54vdc Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch V5 2tp Sfp-vi 54vdc Firmware Version < 6.02n
Nexans ≫ Gigaswitch V5 2tp Sfp-vi 54vdc Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch V5 Sfp-2vi 230vac Firmware Version < 6.02n
Nexans ≫ Gigaswitch V5 Sfp-2vi 230vac Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch V5 Tp(pse+) Sfp-2vi 54vdc Firmware Version < 6.02n
Nexans ≫ Gigaswitch V5 Tp(pse+) Sfp-2vi 54vdc Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch V5 Tp(pse+) Sfp-2vi 54vdc Ind Firmware Version < 6.02n
Nexans ≫ Gigaswitch V5 Tp(pse+) Sfp-2vi 54vdc Ind Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch V5 Tp(pse+) Sfp-2vi 54vdc Med Firmware Version < 6.02n
Nexans ≫ Gigaswitch V5 Tp(pse+) Sfp-2vi 54vdc Med Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch V5 Tp Sfp-2vi 54vdc Firmware Version < 6.02n
Nexans ≫ Gigaswitch V5 Tp Sfp-2vi 54vdc Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch V5 Tp Sfp-2vi 54vdc Ind Firmware Version < 6.02n
Nexans ≫ Gigaswitch V5 Tp Sfp-2vi 54vdc Ind Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch V5 Tp Sfp-2vi 54vdc Med Firmware Version < 6.02n
Nexans ≫ Gigaswitch V5 Tp Sfp-2vi 54vdc Med Firmware Version >= 7.0 < 7.02
Nexans ≫ Gigaswitch V5 Tp Sfp-vi 230vac Firmware Version < 6.02n
Nexans ≫ Gigaswitch V5 Tp Sfp-vi 230vac Firmware Version >= 7.0 < 7.02
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.61% | 0.691 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
CWE-798 Use of Hard-coded Credentials
The product contains hard-coded credentials, such as a password or cryptographic key.