Cms8000 Firmware
CVE-2022-3027
MEDIUM
Severity by source
AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Lifecycle Timeline
1DescriptionNVD
The CMS8000 device does not properly control or sanitize the SSID name of a new Wi-Fi access point. A threat actor could create an SSID with a malicious name, including non-standard characters that, when the device attempts connecting to the malicious SSID, the device can be exploited to write arbitrary files or display incorrect information.
AnalysisAI
The CMS8000 device does not properly control or sanitize the SSID name of a new Wi-Fi access point. Rated medium severity (CVSS 5.7), this vulnerability is no authentication required, low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-284. The CMS8000 device does not properly control or sanitize the SSID name of a new Wi-Fi access point. A threat actor could create an SSID with a malicious name, including non-standard characters that, when the device attempts connecting to the malicious SSID, the device can be exploited to write arbitrary files or display incorrect information. Affected products include: Contechealth Cms8000 Firmware.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Cms8000 Firmware
View allThe CMS800 device fails while attempting to parse malformed network data sent by a threat actor. Rated high severity (CV
A threat actor with momentary access to the device can plug in a USB drive and perform a malicious firmware update, resu
Multiple globally default credentials exist across all CMS8000 devices, that once exposed, allow a threat actor with mom
Multiple binary application files on the CMS8000 device are compiled with 'not stripped' and 'debug_info' compilation se
Same weakness CWE-284 – Improper Access Control
View allSame technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today