CVE-2022-47311

Name of the Vulnerable Software and Affected Versions iBoot devices (affected versions not specified)

Description A proprietary protocol for iBoot devices is used for control and keepalive commands. The function compares the username and password; it also contains the configuration data for the user specified. If the user does not exist, then it sends a value for username and password, which allows successful authentication for a connection.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.