CVE-2022-38789

Description

An issue was discovered in Airties Smart Wi-Fi before 2020-08-04. It allows attackers to change the main/guest SSID and the PSK to arbitrary values, and map the LAN, because of Insecure Direct Object Reference.

Related CPE's

o airties air_4920_firmware ********

h airties air_4920 -*******

o airties air_4921_firmware ********

h airties air_4921 -*******

o airties air_4971_firmware ********

h airties air_4971 -*******

References

https://airties.com/airties-information-security-policy/

Vendor Advisory

https://github.com/ProxyStaffy/Airties-CVE-2022-38789/blob/main/Description

Third Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io