CVE-2022-3218

Public Exploit

Necta WiFi Mouse (Mouse Server) client-side authentication bypass

Description

Due to a reliance on client-side authentication, the WiFi Mouse (Mouse Server) from Necta LLC's authentication mechanism is trivially bypassed, which can result in remote code execution.

References

Link	Tags
https://github.com/rapid7/metasploit-framework/pull/16985	third party advisory patch
https://www.exploit-db.com/exploits/50972	exploit vdb entry third party advisory
https://www.exploit-db.com/exploits/49601	exploit vdb entry third party advisory
https://github.com/H4rk3nz0/PenTesting/blob/main/Exploits/wifi%20mouse/wifi-mouse-server-rce.py	third party advisory exploit
http://packetstormsecurity.com/files/168509/WiFi-Mouse-1.8.3.4-Remote-Code-Execution.html	exploit vdb entry third party advisory

Frequently Asked Questions

What is the severity of CVE-2022-3218?: CVE-2022-3218 has been scored as a critical severity vulnerability.
How to fix CVE-2022-3218?: To fix CVE-2022-3218, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-3218 being actively exploited in the wild?: It is possible that CVE-2022-3218 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~85% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-3218?: CVE-2022-3218 affects Necta LLC WiFi Mouse (Mouse Server).

Description

Categories

CWE-603 – Use of Client-Side Authentication

CWE-287 – Improper Authentication

References

Frequently Asked Questions