Vulnerability CVE-2022-3703
Published: 2022-11-10

Description:
All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior??s web portal is vulnerable to accepting malicious firmware packages that could provide a backdoor to an attacker and provide privilege escalation to the device.

Type:

CWE-345

 (Insufficient Verification of Data Authenticity)

 References:
https://www.cisa.gov/uscert/ics/advisories/icsa-22-307-01
Copyright 2024, cxsecurity.com

 

Back to Top