Security Advisory

CVE-2022-47208

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-16 00:00:00

Last updated 2025-04-17 17:31:53

Assigner tenable

State PUBLISHED

Description

The “puhttpsniff” service, which runs by default, is susceptible to command injection due to improperly sanitized user input. An unauthenticated attacker on the same network segment as the router can execute arbitrary commands on the device without authentication.

← Browse all CVEs View on cve.org ↗