cvedb.io
CVE-2022-3485
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2022-12-12T12:15:10.697 · Last modified 2026-06-17T04:59:37.120

Summary

In IFM Moneo Appliance with version up to 1.9.3 an unauthenticated remote attacker can reset the administrator password by only supplying the serial number and thus gain full control of the device.

Affected products

ifm — moneo_qha210_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when ifm ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.