CVE-2022-28113
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2022-28113
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An issue in upload.csp of FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows attackers to write files and reset the user passwords without having a valid session cookie.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
FANTEC MWiD25-DS 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
FANTEC MWiD25-DS是德国FANTEC公司的一个无线扩展器。 FANTEC MWiD25-DS存在安全漏洞,该漏洞允许攻击者在没有有效会话 cookie 的情况下写入文件并重置用户密码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2022-28113
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | Unauthenticated RCE exploit for Fantec MWiD25-DS | https://github.com/code-byter/CVE-2022-28113 | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2022-28113
请登录查看更多情报信息。
- https://code-byter.com/2022/04/06/fantec-wifi.htmlx_refsource_MISC
- https://github.com/code-byter/CVE-2022-28113x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2022-28113
Same Patch Batch · n/a · 2022-04-15 · 67 CVEs total
| CVE-2022-24279 | 7.5 HIGH | Prototype Pollution |
| CVE-2022-29287 | 4.9 MEDIUM | Kentico 安全漏洞 |
| CVE-2022-27425 | Chamilo LMS 跨站脚本漏洞 | |
| CVE-2021-44493 | YottaDB 安全漏洞 | |
| CVE-2022-27423 | Chamilo LMS SQL注入漏洞 | |
| CVE-2021-44506 | FIS GT.M 代码问题漏洞 | |
| CVE-2022-27257 | Hubzilla 安全漏洞 | |
| CVE-2021-44505 | FIS GT.M 代码问题漏洞 | |
| CVE-2021-44504 | FIS GT.M 安全漏洞 | |
| CVE-2021-44503 | FIS GT.M 缓冲区错误漏洞 | |
| CVE-2021-44502 | FIS GT.M 安全漏洞 | |
| CVE-2021-44501 | FIS GT.M 代码问题漏洞 | |
| CVE-2021-44500 | FIS GT.M数字错误漏洞 | |
| CVE-2021-44499 | FIS GT.M 缓冲区错误漏洞 | |
| CVE-2021-44498 | FIS GT.M 代码问题漏洞 | |
| CVE-2021-44497 | FIS GT.M 资源管理错误漏洞 | |
| CVE-2021-44496 | YottaDB缓冲区错误漏洞 | |
| CVE-2021-44495 | YottaDB 代码问题漏洞 | |
| CVE-2021-44494 | YottaDB 代码问题漏洞 | |
| CVE-2022-27367 | CScms SQL注入漏洞 |
Showing top 20 of 67 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2022-28113
No comments yet