CVE-2022-30235

Name of the Vulnerable Software and Affected Versions Wiser Smart versions 4.5 and prior EER21000 versions 4.5 and prior EER21001 versions 4.5 and prior

Description A vulnerability exists that could allow unauthorized access when an attacker uses brute force, due to improper restriction of excessive authentication attempts. This could enable a remote attacker to gain unauthorized access to protected information using a brute force attack.

Recommendations For Wiser Smart versions 4.5 and prior, consider implementing additional authentication controls to limit excessive attempts. For EER21000 versions 4.5 and prior, restrict access to the system until a fix is available. For EER21001 versions 4.5 and prior, disable remote access functionality to minimize the risk of exploitation. As a temporary workaround, consider disabling the authentication mechanism until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.