How severe is CVE-2022-47560?

CVE-2022-47560 has a CVSS v3 score of 5.7 (MEDIUM).

CVE-2022-47560

5.7MEDIUM

The lack of web request control on ekorCCP and ekorRCI devices allows a potential attacker to create custom requests to execute malicious actions when a user is logged in.

Published: 9/20/2023Updated: 11/21/2024

Description

The lack of web request control on ekorCCP and ekorRCI devices allows a potential attacker to create custom requests to execute malicious actions when a user is logged in.

AI AnalysisPowered by AI

Affected Products

ormazabalekorrci_firmware

601j

ormazabalekorrci

ormazabalekorccp_firmware

601j

ormazabalekorccp

References

https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-ormazabal-products
Third Party Advisory
https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-ormazabal-products
Third Party Advisory