PT-2022-20956 · Mercury · Mercury Mipc451-4
Published
2022-06-16
·
Updated
2023-08-08
·
CVE-2022-31849
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
MERCURY MIPC451-4 version 1.0.22 Build 220105 Rel.55642n
Description
The issue is a remote code execution (RCE) vulnerability. It can be exploited via a crafted POST request.
Recommendations
For MERCURY MIPC451-4 version 1.0.22 Build 220105 Rel.55642n, consider restricting access to the device to minimize the risk of exploitation until a patch is available. Avoid using the device for sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Mercury Mipc451-4