CVE-2022-3229

CRITICAL

Unified Remote < 3.11.0.2483 - Unauthenticated Remote Code Execution via Web Management Interface

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-3229. PoCs published by h00die, H4RK3NZ0, including Metasploit module exploits/windows/misc/unified_remote_rce.

AI-analyzed exploit summary This Metasploit module exploits CVE-2022-3229, an authentication bypass vulnerability in Unified Remote, to achieve remote code execution by sending crafted packets to the service and deploying a payload via the remote control protocol.

Description

Because the web management interface for Unified Intents' Unified Remote solution does not itself require authentication, a remote, unauthenticated attacker can change or disable authentication requirements for the Unified Remote protocol, and leverage this now-unauthenticated access to run code of the attacker's choosing.

Exploits (1)

metasploit WORKING POC NORMAL

by h00die, H4RK3NZ0 · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/unified_remote_rce.rb

View Code ZIP pw:eip

This Metasploit module exploits CVE-2022-3229, an authentication bypass vulnerability in Unified Remote, to achieve remote code execution by sending crafted packets to the service and deploying a payload via the remote control protocol.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Unified Remote 3.11.0.2483 (50)

No auth needed

Prerequisites: Network access to the target's Unified Remote service (port 9512) · Target must have Unified Remote running with accessible web interface (port 9510) for authentication bypass

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Issue Tracking, Patch technical-description

https://github.com/rapid7/metasploit-framework/pull/16989

Scores

CVSS v3 9.8

EPSS 0.7219

EPSS Percentile 98.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-306 CWE-285

Status published

Products (1)

unifiedremote/unified_remote < 3.11.0.2483

Published Feb 06, 2023

Tracked Since Feb 18, 2026