CVE-2022-27179
Summary
| CVE | CVE-2022-27179 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2022-04-20 16:15:00 UTC |
| Updated | 2022-04-28 18:56:00 UTC |
| Description | A malicious actor having access to the exported configuration file may obtain the stored credentials and thereby gain access to the protected resource. If the same passwords were used for other resources, further such assets may be compromised. |
Risk And Classification
Problem Types: CWE-522
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Redlion | Da50n | - | All | All | All |
| Operating System | Redlion | Da50n Firmware | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Red Lion DA50N | CISA | MISC | www.cisa.gov | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
Discovery Credit
LEGACY: Ron Brash of aDolus Technology Inc. reported these vulnerabilities to CISA.
Legacy QID Mappings
- 590972 Red Lion DA50N Multiple Vulnerabilities (ICSA-22-104-03)