Cyber Resilience

CVE-2022-43110

Critical

Published: 22 August 2025

Published
22 August 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0026 49.5th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2022-43110 is a critical-severity Improper Access Control (CWE-284) vulnerability in Cisa (inferred from references). Its CVSS base score is 9.8 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 49.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 AC-14 (Permitted Actions Without Identification or Authentication) and AC-3 (Access Enforcement).

Deeper analysis

CVE-2022-43110 affects Voltronic Power ViewPower through version 1.04-21353 and PowerShield Netguard before version 1.04-23292. The vulnerability resides in an unspecified web interface that allows a remote attacker to configure the system without authentication. This improper access control issue, mapped to CWE-284, CWE-306, and CWE-425, enables unauthorized modifications to critical system settings.

An unauthenticated remote attacker with network access can exploit this vulnerability due to its low complexity and no required privileges, as indicated by the CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Successful exploitation allows the attacker to change the web interface admin password, view and modify system configuration, enumerate connected UPS devices, shut down those devices, and configure operating system commands to execute upon detection of a connected UPS shutdown, potentially leading to high impacts on confidentiality, integrity, and availability.

Advisories including CISA ICSA-25-182-05 and the Ready2Disclose report at ready2disclose.com/vpow-31491-43110 detail mitigation strategies for this vulnerability. Security practitioners should consult these references for specific patch information, such as upgrading to ViewPower 1.04-21353 or later and PowerShield Netguard 1.04-23292 or later, along with network segmentation and access controls for affected systems.

EU & UK References

Vulnerability details

Voltronic Power ViewPower through 1.04-21353 and PowerShield Netguard before 1.04-23292 allows a remote attacker to configure the system via an unspecified web interface. An unauthenticated remote attacker can make changes to the system including: changing the web interface admin password,…

more

view/change system configuration, enumerate connected UPS devices and shut down connected UPS devices. This extends to being able to configure operating system commands that should run if the system detects a connected UPS shutting down.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1059 Command and Scripting Interpreter Execution
Adversaries may abuse command and script interpreters to execute commands, scripts, or binaries.
Why these techniques?

Unauthenticated remote web interface access directly enables T1190 (public-facing app exploitation) and facilitates arbitrary OS command configuration/execution via T1059.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2026-1707Shared CWE-284
CVE-2026-37709Shared CWE-284
CVE-2026-42302Shared CWE-306
CVE-2025-26613Shared CWE-284
CVE-2025-8025Shared CWE-284, CWE-306
CVE-2026-42222Shared CWE-284, CWE-306
CVE-2026-33951Shared CWE-284, CWE-306
CVE-2026-39310Shared CWE-284, CWE-306
CVE-2025-20358Shared CWE-306
CVE-2026-42569Shared CWE-284, CWE-306

Affected Assets

Cisa
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Enforces approved authorizations for access to the web interface, preventing unauthenticated remote changes to admin passwords, system configurations, UPS controls, and OS commands.

prevent

Explicitly identifies and authorizes only safe actions without identification or authentication, prohibiting critical configuration modifications by unauthenticated attackers.

prevent

Remediates the specific improper access control flaw in ViewPower and PowerShield Netguard by applying vendor patches such as version 1.04-21353 or later.

References