{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T13:04:43.365","vulnerabilities":[{"cve":{"id":"CVE-2022-31480","sourceIdentifier":"productsecurity@carrier.com","published":"2022-06-06T17:15:11.030","lastModified":"2024-11-21T07:04:32.707","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated attacker could arbitrarily upload firmware files to the target device, ultimately causing a Denial-of-Service (DoS). This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502, and EP4502 which contain firmware versions prior to 1.302 for the LP series and 1.296 for the EP series. The attacker needs to have a properly signed and encrypted binary, loading the firmware to the device ultimately triggers a reboot."},{"lang":"es","value":"Un atacante no autenticado podría cargar arbitrariamente archivos de firmware en el dispositivo objetivo, causando en última instancia una denegación de servicio (DoS). Esta vulnerabilidad afecta a los productos basados en los controladores inteligentes HID Mercury LP1501, LP1502, LP2500, LP4502 y EP4502 que contienen versiones de firmware anteriores a 1.302 para la serie LP y 1.296 para la serie EP. El atacante necesita tener un binario debidamente firmado y encriptado, la carga del firmware en el dispositivo finalmente desencadena un reinicio"}],"metrics":{"cvssMetricV31":[{"source":"productsecurity@carrier.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"productsecurity@carrier.com","type":"Secondary","description":[{"lang":"en","value":"CWE-425"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-425"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:hidglobal:lp1501_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"D2531827-8A5A-43E9-9676-673E4E3A57E8"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:hidglobal:lp1501:-:*:*:*:*:*:*:*","matchCriteriaId":"B9DC3EC5-C67D-4FE5-8B53-04AB785588FE"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:hidglobal:lp1502_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"27E8E33B-63CA-4661-9B45-1D2A4A4A7417"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:hidglobal:lp1502:-:*:*:*:*:*:*:*","matchCriteriaId":"902FDABA-C5D0-4CAE-BBDF-E4338D3A4DAF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:hidglobal:lp2500_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"97CACF87-1D8F-43AE-8BA2-9BA48EABDE97"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:hidglobal:lp2500:-:*:*:*:*:*:*:*","matchCriteriaId":"AAC2A69E-BF7D-448B-8347-19CFFABED15A"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:hidglobal:lp4502_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"E33A1872-FA6E-4063-BAE1-1437F0780107"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:hidglobal:lp4502:-:*:*:*:*:*:*:*","matchCriteriaId":"22147A65-6ADE-46F3-AFF8-E46CE81D6E8B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:hidglobal:ep4502_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.296","matchCriteriaId":"C85E5702-D143-4EFB-BCFB-E4AE18C87882"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:hidglobal:ep4502:-:*:*:*:*:*:*:*","matchCriteriaId":"F9A28A38-C57D-4FC6-8CAA-0011AF06D290"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:carrier:lenels2_lnl-4420_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.296","matchCriteriaId":"332F1FB3-FBB7-42F1-A6A8-AAFD5D67ACA7"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:carrier:lenels2_lnl-4420:-:*:*:*:*:*:*:*","matchCriteriaId":"36855319-E36B-47C3-B27E-E1509D1C9D4D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:carrier:lenels2_lnl-x2210_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"4B1CBAA6-DAF5-413D-B361-890DAAC626EC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:carrier:lenels2_lnl-x2210:-:*:*:*:*:*:*:*","matchCriteriaId":"3B091C8F-2C3A-47C9-92AC-550D977F781A"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:carrier:lenels2_lnl-x2220_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"7E0F6C5B-E4F4-444D-A6D4-B8F58A92B7BC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:carrier:lenels2_lnl-x2220:-:*:*:*:*:*:*:*","matchCriteriaId":"15FD8460-39D0-46C4-9F04-EB3B6C72767A"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:carrier:lenels2_lnl-x3300_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"4DF532E2-3AC9-4850-A716-343795C55019"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:carrier:lenels2_lnl-x3300:-:*:*:*:*:*:*:*","matchCriteriaId":"389BE7A1-1B57-4097-9AAF-A6931C06BA15"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:carrier:lenels2_lnl-x4420_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"4415D959-7321-41D7-A193-B4B01E4DC6DD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:carrier:lenels2_lnl-x4420:-:*:*:*:*:*:*:*","matchCriteriaId":"2BC2BAEA-E139-47C2-9A8F-857AB1C7D54B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:carrier:lenels2_s2-lp-1501_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"7752CDEC-BC7A-406E-9AFB-30C22190570D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:carrier:lenels2_s2-lp-1501:-:*:*:*:*:*:*:*","matchCriteriaId":"3183C665-CD31-446D-8D95-908148675D25"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:carrier:lenels2_s2-lp-1502_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"B057323E-A352-4E32-845F-51DEA38722BD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:carrier:lenels2_s2-lp-1502:-:*:*:*:*:*:*:*","matchCriteriaId":"93B38941-79D8-41E7-9763-989C0C3B6139"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:carrier:lenels2_s2-lp-2500_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"B5BF0DDA-C6DC-4728-9902-BA0324A13A7C"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:carrier:lenels2_s2-lp-2500:-:*:*:*:*:*:*:*","matchCriteriaId":"1724D78F-EE79-4E48-BDB2-D399C573F42D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:carrier:lenels2_s2-lp-4502_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"1.302","matchCriteriaId":"C2F9B937-9326-47A5-AE7F-9218B1F0B7B3"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:carrier:lenels2_s2-lp-4502:-:*:*:*:*:*:*:*","matchCriteriaId":"115129D2-5134-4BCD-B5D0-263F4687B59D"}]}]}],"references":[{"url":"https://www.corporate.carrier.com/product-security/advisories-resources/","source":"productsecurity@carrier.com","tags":["Vendor Advisory"]},{"url":"https://www.corporate.carrier.com/product-security/advisories-resources/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}