CVE-2022-47320 — HIGH (8.1)

Q: How severe is CVE-2022-47320?

CVE-2022-47320 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2022-47320?

Check the references section above for vendor advisories and patch information. Affected products include: Dataprobe Iboot-Pdu4-N20 Firmware, Dataprobe Iboot-Pdu4-N20, Dataprobe Iboot-Pdu4Sa-N15 Firmware, Dataprobe Iboot-Pdu4Sa-N15, Dataprobe Iboot-Pdu4A-N15 Firmware.

Vulnerability Description

The iBoot device’s basic discovery protocol assists in initial device configuration. The discovery protocol shows basic information about devices on the network and allows users to perform configuration changes.

CVSS Score

8.1

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Dataprobe	Iboot-Pdu4-N20 Firmware	< 1.42.06162022
Dataprobe	Iboot-Pdu4-N20	-
Dataprobe	Iboot-Pdu4Sa-N15 Firmware	< 1.42.06162022
Dataprobe	Iboot-Pdu4Sa-N15	-
Dataprobe	Iboot-Pdu4A-N15 Firmware	< 1.42.06162022
Dataprobe	Iboot-Pdu4A-N15	-
Dataprobe	Iboot-Pdu4Sa-N20 Firmware	< 1.42.06162022
Dataprobe	Iboot-Pdu4Sa-N20	-
Dataprobe	Iboot-Pdu4A-N20 Firmware	< 1.42.06162022
Dataprobe	Iboot-Pdu4A-N20	-
Dataprobe	Iboot-Pdu8Sa-N15 Firmware	< 1.42.06162022
Dataprobe	Iboot-Pdu8Sa-N15	-
Dataprobe	Iboot-Pdu8A-N15 Firmware	< 1.42.06162022
Dataprobe	Iboot-Pdu8A-N15	-
Dataprobe	Iboot-Pdu8Sa-2N15 Firmware	< 1.42.06162022
Dataprobe	Iboot-Pdu8Sa-2N15	-
Dataprobe	Iboot-Pdu8A-2N15 Firmware	< 1.42.06162022
Dataprobe	Iboot-Pdu8A-2N15	-
Dataprobe	Iboot-Pdu8Sa-N20 Firmware	< 1.42.06162022
Dataprobe	Iboot-Pdu8Sa-N20	-

References

https://dataprobe.com/support/iboot-pdu/local_upgrade_pdu_procedure.pdfProduct
https://www.cisa.gov/news-events/ics-advisories/icsa-22-263-03PatchThird Party AdvisoryUS Government Resource
https://dataprobe.com/support/iboot-pdu/local_upgrade_pdu_procedure.pdfProduct
https://www.cisa.gov/news-events/ics-advisories/icsa-22-263-03PatchThird Party AdvisoryUS Government Resource

FAQ

What is CVE-2022-47320?

CVE-2022-47320 is a vulnerability with a CVSS score of 8.1 (HIGH). The iBoot device’s basic discovery protocol assists in initial device configuration. The discovery protocol shows basic information about devices on the network and allows users to perform configurati...

How severe is CVE-2022-47320?

CVE-2022-47320 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-47320?

Check the references section above for vendor advisories and patch information. Affected products include: Dataprobe Iboot-Pdu4-N20 Firmware, Dataprobe Iboot-Pdu4-N20, Dataprobe Iboot-Pdu4Sa-N15 Firmware, Dataprobe Iboot-Pdu4Sa-N15, Dataprobe Iboot-Pdu4A-N15 Firmware.