CVE-2022-43442
Severity CVSS v4.0:
Pending analysis
Type:
CWE-522
Insufficiently Protected Credentials
Publication date:
05/12/2022
Last modified:
24/04/2025
Description
Plaintext storage of a password vulnerability exists in +F FS040U software versions v2.3.4 and earlier, which may allow an attacker to obtain the login password of +F FS040U and log in to the management console.
Impact
Base Score 3.x
4.60
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:fsi:fs040u_firmware:*:*:*:*:*:*:*:* | 2.3.4 (including) | |
| cpe:2.3:h:fsi:fs040u:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://jvn.jp/en/jp/JVN74285622/index.html
- https://www.fsi.co.jp/mobile/plusF/news/22102801.html
- https://www.fsi.co.jp/mobile/plusF/news/22102802.html
- https://www.fsi.co.jp/mobile/plusF/news/22102803.html
- https://www.fsi.co.jp/mobile/plusF/news/22102804.html
- https://jvn.jp/en/jp/JVN74285622/index.html
- https://www.fsi.co.jp/mobile/plusF/news/22102801.html
- https://www.fsi.co.jp/mobile/plusF/news/22102802.html
- https://www.fsi.co.jp/mobile/plusF/news/22102803.html
- https://www.fsi.co.jp/mobile/plusF/news/22102804.html