CVE-2022-3185

Severity Score

5.3

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where the affected product exposes sensitive data concerning the device.

Las versiones de firmware de Dataprobe iBoot-PDU anteriores a 1.42.06162022 contienen una vulnerabilidad en la que el producto afectado expone datos confidenciales relacionados con el dispositivo.

*Credits: Uri Katz, Claroty Research

CVSS Scores

NISTv3.1 5.3

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-09-12 CVE Reserved
2022-12-21 CVE Published
2024-07-13 EPSS Updated
2024-08-03 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC
https://www.cisa.gov/uscert/ics/advisories/icsa-22-263-03	2023-11-07

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Dataprobe Search vendor "Dataprobe"	Iboot-pdu4-n20 Firmware Search vendor "Dataprobe" for product "Iboot-pdu4-n20 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu4-n20 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu4-n20 Search vendor "Dataprobe" for product "Iboot-pdu4-n20"	-	-	Safe
Dataprobe Search vendor "Dataprobe"	Iboot-pdu4sa-n15 Firmware Search vendor "Dataprobe" for product "Iboot-pdu4sa-n15 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu4sa-n15 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu4sa-n15 Search vendor "Dataprobe" for product "Iboot-pdu4sa-n15"	-	-	Safe
Dataprobe Search vendor "Dataprobe"	Iboot-pdu4a-n15 Firmware Search vendor "Dataprobe" for product "Iboot-pdu4a-n15 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu4a-n15 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu4a-n15 Search vendor "Dataprobe" for product "Iboot-pdu4a-n15"	-	-	Safe
Dataprobe Search vendor "Dataprobe"	Iboot-pdu4sa-n20 Firmware Search vendor "Dataprobe" for product "Iboot-pdu4sa-n20 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu4sa-n20 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu4sa-n20 Search vendor "Dataprobe" for product "Iboot-pdu4sa-n20"	-	-	Safe
Dataprobe Search vendor "Dataprobe"	Iboot-pdu4a-n20 Firmware Search vendor "Dataprobe" for product "Iboot-pdu4a-n20 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu4a-n20 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu4a-n20 Search vendor "Dataprobe" for product "Iboot-pdu4a-n20"	-	-	Safe
Dataprobe Search vendor "Dataprobe"	Iboot-pdu8sa-n15 Firmware Search vendor "Dataprobe" for product "Iboot-pdu8sa-n15 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu8sa-n15 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu8sa-n15 Search vendor "Dataprobe" for product "Iboot-pdu8sa-n15"	-	-	Safe
Dataprobe Search vendor "Dataprobe"	Iboot-pdu8a-n15 Firmware Search vendor "Dataprobe" for product "Iboot-pdu8a-n15 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu8a-n15 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu8a-n15 Search vendor "Dataprobe" for product "Iboot-pdu8a-n15"	-	-	Safe
Dataprobe Search vendor "Dataprobe"	Iboot-pdu8sa-2n15 Firmware Search vendor "Dataprobe" for product "Iboot-pdu8sa-2n15 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu8sa-2n15 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu8sa-2n15 Search vendor "Dataprobe" for product "Iboot-pdu8sa-2n15"	-	-	Safe
Dataprobe Search vendor "Dataprobe"	Iboot-pdu8a-2n15 Firmware Search vendor "Dataprobe" for product "Iboot-pdu8a-2n15 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu8a-2n15 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu8a-2n15 Search vendor "Dataprobe" for product "Iboot-pdu8a-2n15"	-	-	Safe
Dataprobe Search vendor "Dataprobe"	Iboot-pdu8sa-n20 Firmware Search vendor "Dataprobe" for product "Iboot-pdu8sa-n20 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu8sa-n20 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu8sa-n20 Search vendor "Dataprobe" for product "Iboot-pdu8sa-n20"	-	-	Safe
Dataprobe Search vendor "Dataprobe"	Iboot-pdu8a-n20 Firmware Search vendor "Dataprobe" for product "Iboot-pdu8a-n20 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu8a-n20 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu8a-n20 Search vendor "Dataprobe" for product "Iboot-pdu8a-n20"	-	-	Safe
Dataprobe Search vendor "Dataprobe"	Iboot-pdu8a-2n20 Firmware Search vendor "Dataprobe" for product "Iboot-pdu8a-2n20 Firmware"	< 1.42.06162022 Search vendor "Dataprobe" for product "Iboot-pdu8a-2n20 Firmware" and version " < 1.42.06162022"	-	Affected	in	Dataprobe Search vendor "Dataprobe"	Iboot-pdu8a-2n20 Search vendor "Dataprobe" for product "Iboot-pdu8a-2n20"	-	-	Safe