cbcvebase.
CVE-2022-31486
published 2022-06-06

CVE-2022-31486: An authenticated attacker can send a specially crafted route to the “edit_route.cgi” binary and have it execute shell commands. This vulnerability impacts…

PriorityP259high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
1.25%
65.6th percentile
An authenticated attacker can send a specially crafted route to the “edit_route.cgi” binary and have it execute shell commands. This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502, and EP4502 which contain firmware versions prior to 1.303 for the LP series and 1.297 for the EP series. An attacker with this level of access on the device can monitor all communications sent to and from this device, modify onboard relays, change configuration files, or cause the device to become unstable.

Affected

28 ranges· showing 25
VendorProductVersion rangeFixed in
carrierlenels2_lnl-4420_firmware< 1.2971.297
carrierlenels2_lnl-x2210_firmware< 1.3031.303
carrierlenels2_lnl-x2220_firmware< 1.3031.303
carrierlenels2_lnl-x3300_firmware< 1.3031.303
carrierlenels2_lnl-x4420_firmware< 1.3031.303
carrierlenels2_s2-lp-1501_firmware< 1.3031.303
carrierlenels2_s2-lp-1502_firmware< 1.3031.303
carrierlenels2_s2-lp-2500_firmware< 1.3031.303
carrierlenels2_s2-lp-4502_firmware< 1.3031.303
hid_mercuryep4502>= ALL < 1.2971.297
hid_mercurylp1501>= ALL < 1.3031.303
hid_mercurylp1502>= ALL < 1.3031.303
hid_mercurylp2500>= ALL < 1.3031.303
hid_mercurylp4502>= ALL < 1.3031.303
hidglobalep4502_firmware< 1.2971.297
hidgloballp1501_firmware< 1.3031.303
hidgloballp1502_firmware< 1.3031.303
hidgloballp2500_firmware< 1.3031.303
hidgloballp4502_firmware< 1.3031.303
lenels2lnl-4420>= ALL < 1.2971.297
lenels2lnl-x2210>= ALL < 1.3031.303
lenels2lnl-x2220>= ALL < 1.3031.303
lenels2lnl-x3300>= ALL < 1.3031.303
lenels2lnl-x4420>= ALL < 1.3031.303
lenels2s2-lp-1501>= ALL < 1.3031.303

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.