Snap One Wattbox WB-300-IP-3 versions WB10.9a17 and prior use a proprietary local area network (LAN) protocol that does not verify updates to the device. An attacker could upload a malformed update file to the device and execute arbitrary code.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2023-01-30T21:58:38.264Z

Updated: 2024-08-02T10:07:05.902Z

Reserved: 2023-01-23T23:57:52.025Z

Link: CVE-2023-22315

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-01-30T22:15:12.517

Modified: 2024-11-21T07:44:30.813

Link: CVE-2023-22315

cve-icon Redhat

No data.