CVE-2022-4945

Summary

The Dataprobe cloud usernames and passwords are stored in plain text in a specific file. Any user able to read this specific file from the device could compromise other devices connected to the user's cloud.

Affected Software

VendorProductVersion RangeStatus
Dataprobe, Inc.Dataprobe iBoot-PDU FW0 < 1.42.06162022affected

Weaknesses

  • CWE-256 Plaintext Storage of a Password

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References