CVE-2022-42055
Published: 27 October 2022
Summary
CVE-2022-42055 is a medium-severity OS Command Injection (CWE-78) vulnerability in Gl-Inet Goodcloud. Its CVSS base score is 6.5 (Medium).
Operationally, ranked in the top 8.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
CVE-2022-42055 is a command injection vulnerability, tracked under CWE-78, that affects the GL.iNet GoodCloud IoT Device Management System version 1.00.220412.00. The flaw resides in the ping and traceroute diagnostic tools and permits an attacker to inject operating-system commands that result in arbitrary file disclosure on the underlying system. The vulnerability carries a CVSS 3.1 base score of 6.5, reflecting network attack vector, low complexity, and low-privileged access requirements with high impact on confidentiality.
An authenticated user with network access to the management interface can supply crafted input to the ping or traceroute functions. Successful exploitation allows the attacker to read arbitrary files stored on the device without any user interaction or change to the system scope.
Public references point to a technical write-up at boschko.ca/glinet-router that details the injection vectors; however, the supplied references contain no information on vendor patches, work-arounds, or official mitigation guidance.
EPSS scores have remained low, moving only from a peak of 0.0734 to a current value of 0.0711, indicating no material increase in observed exploitation interest after disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2022-45146
Vulnerability details
Multiple command injection vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 via the ping and traceroute tools allow attackers to read arbitrary files on the system.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.