CVE-2022-37832

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-37832
Mutiny 7.2.0-10788 suffers from Hardcoded root password.

9.8 /10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://labs.jumpsec.com/advisory-cve-2022-37832-mutiny-network-monitoring-appliance-hardcoded-credentials/ Third Party Advisory
https://labs.jumpsec.com/advisory-cve-2022-37832-mutiny-network-monitoring-appliance-hardcoded-credentials/ Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:mutiny:mutiny:*:*:*:*:*:*:*:*
History

No history.

Information

Published : 2022-12-16 22:15

Updated : 2025-04-18 14:15

NVD link : CVE-2022-37832

Mitre link : CVE-2022-37832

CVE.ORG link : CVE-2022-37832

JSON object : View

Products Affected

mutiny

  • mutiny
CWE
CWE-798

Use of Hard-coded Credentials