CVE-2022-44149

HIGH EXPLOITED

Nexxt Amp300 ARN02304U8 - RCE

Title source: llm

Description

The web service on Nexxt Amp300 ARN02304U8 42.103.1.5095 and 80.103.2.5045 devices allows remote OS command execution by placing &telnetd in the JSON host field to the ping feature of the goform/sysTools component. Authentication is required

Exploits (4)

exploitdb WORKING POC

by Yerodin Richards · pythonremotehardware

https://www.exploit-db.com/exploits/51195

View Code ZIP pw:eip

nomisec STUB 5 stars

by geniuszly · poc

https://github.com/geniuszly/CVE-2022-44149

View Code ZIP pw:eip

nomisec WORKING POC

by yerodin · remote-auth

https://github.com/yerodin/CVE-2022-44149

View Code ZIP pw:eip

inthewild WORKING POC

poc

https://github.com/geniuszlyy/cve-2022-44149

View Code ZIP pw:eip

References (5)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/170366/Nexxt-Router-Firmware-42.103.1.5095-Remote-Code-Execution.html

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/170366/Nexxt-Router-Firmware-80.103.2.5045-Remote-Code-Execution.html

[Exploit, Third Party Advisory] https://cxsecurity.com/issue/WLB-2023010006

[Exploit, Third Party Advisory, VDB Entry] https://packetstormsecurity.com/files/170366/Nexxt-Router-Firmware-42.103.1.5095-Remote-Code-Execution.html

[Product, Vendor Advisory] https://www.nexxtsolutions.com/connectivity/search/?q=ARN02304U8

Scores

CVSS v3 8.8

EPSS 0.8216

EPSS Percentile 99.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2025-01-15

CWE

CWE-78

Status published

Products (2)

nexxtsolutions/amp300_firmware 42.103.1.5095

nexxtsolutions/amp300_firmware 80.103.2.5045

Published Jan 06, 2023

Tracked Since Feb 18, 2026