What is CVE-2022-45699?

CVE-2022-45699 is a vulnerability in N/a. Published 2023-02-10.

Is CVE-2022-45699 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2022-45699

Command injection in the administration interface in APSystems ECU-R version 5203 allows a remote unauthenticated attacker to execute arbitrary commands as root using the timezone parameter.

EPSS: 0.900 (99.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

0xst4n/APSystems-ECU-R-RCE-Timezone
ARPSyndicate/cve-scores
nomi-sec/PoC-in-GitHub

References

www.youtube.com/watch
github.com/0xst4n/APSystems-ECU-R-RCE-Timezone
web.archive.org/web/20230626075954/https://github.com/0xst4n/APSystems-ECU-R-RC…

Frequently asked questions

What is CVE-2022-45699?: CVE-2022-45699 is a vulnerability in N/a. Published 2023-02-10.
Is CVE-2022-45699 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.