CVE-2022-33735

Name of the Vulnerable Software and Affected Versions WS7200-10 version 11.0.2.13

Description The issue is related to a password verification vulnerability. It allows attackers on the LAN to use brute force cracking to obtain passwords, potentially disclosing sensitive system information. The vulnerability is associated with an incorrect implementation of the authentication algorithm, which can be exploited by a remote attacker to bypass existing security restrictions using a brute force attack.

Recommendations For WS7200-10 version 11.0.2.13, as a temporary workaround, consider restricting access to the device or implementing additional security measures to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.