CVE-2023-22315 Information

Description

Snap One Wattbox WB-300-IP-3 versions WB10.9a17 and prior use a proprietary local area network (LAN) protocol that does not verify updates to the device. An attacker could upload a malformed update file to the device and execute arbitrary code.

Reference

https://www.cisa.gov/uscert/ics/advisories/icsa-23-026-03