High severity7.5NVD Advisory· Published Jun 6, 2022· Updated Jun 17, 2026
CVE-2022-31484
CVE-2022-31484
Description
An unauthenticated attacker can send a specially crafted network packet to delete a user from the web interface. This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502, and EP4502 which contain firmware versions prior to 1.29. The impact of this vulnerability is that an unauthenticated attacker could restrict access to the web interface to legitimate users and potentially requiring them to use the default user dip switch procedure to gain access back.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <1.29
- Range: ALL
- Range: ALL
Patches
Vulnerability mechanics
References
1- www.corporate.carrier.com/product-security/advisories-resources/nvdVendor Advisory
News mentions
0No linked articles in our index yet.