CVE-2022-47616 HIGH

CVE-2022-47616: Hitron Technologies Inc. CODA-5310 - Remote Command Execution

Vendor Hitron Technologies Inc.

Product Hitron CODA-5310

Weakness CWE-78

Published June 2, 2023

Last update January 10, 2025

View on NVD All CVEs

CVSS base score

7.2/10

Attack vector Network

Attack complexity Low

Privileges required High

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Hitron CODA-5310 has insufficient filtering for specific parameters in the connection test function. A remote attacker authenticated as an administrator, can use the management page to perform command injection attacks, to execute arbitrary system command, manipulate system or disrupt service.

Key dates

02Disclosure timeline

June 2, 2023 CVE published

January 10, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-47616 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/78.html

Related vulnerabilities

CVE-2022-47616: Hitron Technologies Inc. CODA-5310 - Remote Command Execution

01Description

02Disclosure timeline

03References

04Related CVE