{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-29T04:33:28.114","vulnerabilities":[{"cve":{"id":"CVE-2022-45562","sourceIdentifier":"cve@mitre.org","published":"2022-12-02T03:15:09.387","lastModified":"2026-06-17T05:10:25.113","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Insecure permissions in Telos Alliance Omnia MPX Node v1.0.0 to v1.4.9 allow attackers to manipulate and access system settings with backdoor account low privilege, this can lead to change hardware settings and execute arbitrary commands in vulnerable system functions that is requires high privilege to access."},{"lang":"es","value":"Los permisos inseguros en Telos Alliance Omnia MPX Node v1.0.0 a v1.4.9 permiten a los atacantes manipular y acceder a la configuraciĆ³n del sistema con privilegios bajos de la cuenta de backdoor, lo que puede llevar a cambiar la configuraciĆ³n del hardware y ejecutar comandos arbitrarios en funciones vulnerables del sistema que requieren altos privilegios para acceso."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-04-24T13:53:12.768144Z","id":"CVE-2022-45562","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-276"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-276"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:telosalliance:omnia_mpx_node_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"1.0.0","versionEndIncluding":"1.4.9","matchCriteriaId":"0A113AF7-AFBC-4349-9092-5211AF313CA9"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:telosalliance:omnia_mpx_node:-:*:*:*:*:*:*:*","matchCriteriaId":"8ADBE36A-36A9-4F2B-93A5-DBF192B4405A"}]}]}],"references":[{"url":"https://cyber-guy.gitbook.io/cyber-guys-blog/pocs/cve-2022-45562","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://cyber-guy.gitbook.io/cyber-guys-blog/pocs/cve-2022-45562","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}}]}