CVE-2022-36642

CRITICAL EXPLOITED NUCLEI

Omnia MPX Node Firmware < 1.5.0 - Unauthenticated Local File Disclosure via /appConfig/userDB.json

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2022-36642 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Momen Eldawakhly. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit demonstrates a path traversal vulnerability in Omnia MPX 1.5.0+r1, allowing unauthorized access to sensitive files such as /etc/passwd, /etc/shadow, and userDB.json via crafted HTTP requests.

Description

A local file disclosure vulnerability in /appConfig/userDB.json of Telos Alliance Omnia MPX Node through 1.0.0-1.4.9 allows attackers to access users credentials which makes him able to gain initial access to the control panel with high privilege because the cleartext storage of sensitive information which can be unlatched by exploiting the LFD vulnerability.

Exploits (1)

exploitdb WORKING POC
by Momen Eldawakhly · textremotehardware
https://www.exploit-db.com/exploits/50996

This exploit demonstrates a path traversal vulnerability in Omnia MPX 1.5.0+r1, allowing unauthorized access to sensitive files such as /etc/passwd, /etc/shadow, and userDB.json via crafted HTTP requests.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Omnia MPX 1.5.0+r1
No auth needed
Prerequisites: Network access to the target system · Target system running Omnia MPX 1.5.0+r1
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Omnia MPX 1.5.0+r1 - Local File Inclusion
CRITICALVERIFIEDby arafatansari,ritikchaddha,For3stCo1d
Shodan: http.title:"Omnia MPX Node | Login" || http.title:"omnia mpx node | login"
FOFA: title="omnia mpx node | login"

References (5)

Core 5
Core References
Exploit, Third Party Advisory x_refsource_misc
https://drive.google.com/drive/folders/1jm9h8JNmezTt7AbHYRY7gPC4lXGDNklL
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://www.exploit-db.com/exploits/50996

Scores

CVSS v3 9.8
EPSS 0.7072
EPSS Percentile 98.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2023-11-13
CWE
CWE-862
Status published
Products (2)
telosalliance/omnia_mpx_node_firmware 1.5.0 (2 CPE variants)
telosalliance/omnia_mpx_node_firmware 1.0.0 - 1.5.0
Published Sep 02, 2022
Tracked Since Feb 18, 2026