CVE-2022-30625
MEDIUMCHCNAV P5E GNSS Firmware - Exposure of Information Through Directory Listing
Title source: llmDescription
Directory listing is a web server function that displays the directory contents when there is no index file in a specific website directory. A directory listing provides an attacker with the complete index of all the resources located inside of the directory. The specific risks and consequences vary depending on which files are listed and accessible.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://www.gov.il/en/Departments/faq/cve_advisories
Scores
CVSS v3
5.7
EPSS
0.0028
EPSS Percentile
19.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Details
CWE
CWE-200
CWE-548
Status
published
Products (2)
chcnav/p5e_gnss_firmware
4.1
chcnav/p5e_gnss_firmware
4.2
Published
Jul 18, 2022
Tracked Since
Feb 18, 2026