VYPR
Unrated severityNVD Advisory· Published Aug 29, 2022· Updated Aug 3, 2024

CVE-2022-38625

CVE-2022-38625

Description

Patlite NH-FB v1.46 and below was discovered to contain insufficient firmware validation during the upgrade firmware file upload process. This vulnerability allows authenticated attackers to create and upload their own custom-built firmware and inject malicious code. NOTE: the vendor's position is that this is a design choice, not a vulnerability

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Patlite/NH-FBdescription
  • PATLITE/NH-FBllm-create
    Range: <=1.46

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.