CVE-2022-31808

CVSS 7.8 · High EPSS 0.06% · P18 Updated Mar 21, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-31808

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V2.85.44), SiPass integrated ACC-AP (All versions < V2.85.43). Affected devices improperly sanitize user input on the telnet command line interface. This could allow an authenticated user to escalate privileges by injecting arbitrary commands that are executed with root privileges.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

输入验证不恰当

Source: NVD (National Vulnerability Database)

Vulnerability Title

Siemens SiPass Integrated 输入验证错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Siemens SiPass Integrated是德国西门子（Siemens）公司的一个功能强大且极其灵活的门禁控制系统。 Siemens SiPass Integrated AC5102 (ACC-G2)和SiPass integrated ACC-AP存在输入验证错误漏洞，该漏洞源于未正确清理telnet命令行界面上的用户输入，经过身份验证的攻击者利用该漏洞可以通过注入以root权限执行的任意命令来提升权限。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Siemens	SiPass integrated AC5102 (ACC-G2)	All versions < V2.85.44	-
Siemens	SiPass integrated ACC-AP	All versions < V2.85.43	-

II. Public POCs for CVE-2022-31808

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-31808

请登录查看更多情报信息。

Same Patch Batch · Siemens · 2023-02-14 · 45 CVEs total

CVE-2023-24482	10.0 CRITICAL	Siemens Comos 安全漏洞
CVE-2023-24558	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-24557	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-24555	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-24581	7.8 HIGH	Siemens Solid Edge 资源管理错误漏洞
CVE-2023-24554	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-24551	7.8 HIGH	Siemens Solid Edge 安全漏洞
CVE-2023-24550	7.8 HIGH	Siemens Solid Edge 安全漏洞
CVE-2023-24549	7.8 HIGH	Siemens Solid Edge 安全漏洞
CVE-2022-47977	7.8 HIGH	Siemens JT Open Toolkit 缓冲区错误漏洞
CVE-2023-24552	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-24556	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-24559	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-24560	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-24561	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-24562	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-24563	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-24564	7.8 HIGH	Siemens Solid Edge 缓冲区错误漏洞
CVE-2022-47936	7.8 HIGH	Siemens JT Open Toolkit 安全漏洞
CVE-2023-25140	7.8 HIGH	Siemens Parasolid 缓冲区错误漏洞

Showing top 20 of 45 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: SiPass integrated AC5102 (ACC-G2)

Same vendor: Siemens

Same weakness: CWE-20

V. Comments for CVE-2022-31808

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-31808

I. Basic Information for CVE-2022-31808

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-31808

III. Intelligence Information for CVE-2022-31808

Same Patch Batch · Siemens · 2023-02-14 · 45 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2022-31808

Leave a comment