Vulnerability CVE-2022-36642


Published: 2022-09-02   Modified: 2022-09-03

Description:
A local file disclosure vulnerability in /appConfig/userDB.json of Telos Alliance Omnia MPX Node through 1.5.0+r1 allows attackers to escalate privileges to root and execute arbitrary commands.

 References:
https://cyber-guy.gitbook.io/cyber-guy/pocs/omnia-node-mpx-auth-bypass-via-lfd
https://www.exploit-db.com/exploits/50996
https://drive.google.com/drive/folders/1jm9h8JNmezTt7AbHYRY7gPC4lXGDNklL
https://www.telosalliance.com/radio-processing/audio-interfaces/omnia-mpx-node

Copyright 2026, cxsecurity.com

 

Back to Top