CVE-2022-46738

critical

Description

The affected product exposes multiple sensitive data fields of the affected product. An attacker can use the SNMP command to get device mac address and login as admin.

References

https://www.cisa.gov/news-events/ics-advisories/icsa-22-263-03

https://dataprobe.com/support/iboot-pdu/local_upgrade_pdu_procedure.pdf

Details

Source: Mitre, NVD

Published: 2023-05-22

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H