CVE-2022-44039
CRITICALFranklin Fueling System FFS Colibri 1.9.22.8925 - Privilege Escalation
Title source: llmDescription
Franklin Fueling System FFS Colibri 1.9.22.8925 is affected by: File system overwrite. The impact is: File system rewrite (remote). ¶¶ An attacker can overwrite system files like [system.conf] and [passwd], this occurs because the insecure usage of "fopen" system function with the mode "wb" which allows overwriting file if exists. Overwriting files such as passwd, allows an attacker to escalate his privileges by planting backdoor user with root privilege or change root password.
References (1)
Core 1
Core References
Exploit, Third Party Advisory
https://pastebin.com/raw/64stbsWu
Scores
CVSS v3
9.8
EPSS
0.0100
EPSS Percentile
58.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-863
Status
published
Products (1)
franklinfueling/colibri_firmware
1.9.22.8925
Published
Dec 05, 2022
Tracked Since
Feb 18, 2026