CVE-2022-28113

HIGH

FANTEC GmbH MWiD25-DS Firmware <2.000.030 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-28113. PoCs published by code-byter.

AI-analyzed exploit summary This exploit targets CVE-2022-28113, a buffer overflow vulnerability in Starburst v2 routers. It resets passwords, logs in, and executes arbitrary commands via a crafted payload, optionally launching a telnet session as root.

Description

An issue in upload.csp of FANTEC GmbH MWiD25-DS Firmware v2.000.030 allows attackers to write files and reset the user passwords without having a valid session cookie.

Exploits (1)

nomisec WORKING POC 3 stars
by code-byter · poc
https://github.com/code-byter/CVE-2022-28113

This exploit targets CVE-2022-28113, a buffer overflow vulnerability in Starburst v2 routers. It resets passwords, logs in, and executes arbitrary commands via a crafted payload, optionally launching a telnet session as root.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Starburst v2 router firmware
Auth required
Prerequisites: Network access to the router · Valid session cookie or ability to authenticate
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/code-byter/CVE-2022-28113
Exploit, Third Party Advisory x_refsource_misc
https://code-byter.com/2022/04/06/fantec-wifi.html

Scores

CVSS v3 7.2
EPSS 0.0370
EPSS Percentile 88.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-565
Status published
Products (1)
fantec/mwid25-ds_firmware 2.000.030
Published Apr 15, 2022
Tracked Since Feb 18, 2026