Vulnerability CVE-2022-45140


Published: 2023-02-27

Description:
The configuration backend allows an unauthenticated user to write arbitrary data with root privileges to the storage, which could lead to unauthenticated remote code execution and full system compromise.

Type:

CWE-306

(Missing Authentication for Critical Function)

 References:
https://cert.vde.com/en/advisories/VDE-2022-060/

Copyright 2026, cxsecurity.com

 

Back to Top