CVE-2022-30625

MEDIUM

Chcnav P5e Gnss Firmware - Information Disclosure

Title source: rule

Description

Directory listing is a web server function that displays the directory contents when there is no index file in a specific website directory. A directory listing provides an attacker with the complete index of all the resources located inside of the directory. The specific risks and consequences vary depending on which files are listed and accessible.

References (1)

[Third Party Advisory] https://www.gov.il/en/Departments/faq/cve_advisories

Scores

CVSS v3 5.7

EPSS 0.0014

EPSS Percentile 33.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

Classification

CWE

CWE-548 CWE-200

Status published

Affected Products (2)

chcnav/p5e_gnss_firmware

Timeline

Published Jul 18, 2022

Tracked Since Feb 18, 2026