ByteOS Network

NVD Vulnerability Details :

CVE-2022-23334

Modified

Source-cve@mitre.org

Published At-30 Jan, 2023 | 16:15

Updated At-28 Mar, 2025 | 16:15

The Robot application in Ip-label Newtest before v8.5R0 was discovered to use weak signature checks on executed binaries, allowing attackers to have write access and escalate privileges via replacing NEWTESTREMOTEMANAGER.EXE.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Secondary	3.1	9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Type: Primary

Version: 3.1

Base score: 9.8

Base severity: CRITICAL

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Type: Secondary

Version: 3.1

Base score: 9.8

Base severity: CRITICAL

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CPE Matches

ip-label>>newtest>>Versions before 8.5r0(exclusive)

cpe:2.3:a:ip-label:newtest:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-347	Primary	nvd@nist.gov
CWE-347	Secondary	134c704f-9b21-4f2e-91b3-4a467353bcc0

CWE ID: CWE-347

Type: Primary

Source: nvd@nist.gov

CWE ID: CWE-347

Type: Secondary

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

References

Hyperlink	Source	Resource
http://ip-label.com	cve@mitre.org	Vendor Advisory
http://newtest.com	cve@mitre.org	Broken Link
https://www.on-x.com/wp-content/uploads/2023/01/ON-X-Security-Advisory-Ip-label-Ekara-Newtest-CVE-2022-23334.pdf	cve@mitre.org	Broken Link
http://ip-label.com	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://newtest.com	af854a3a-2127-422b-91ae-364da2661108	Broken Link
https://www.on-x.com/wp-content/uploads/2023/01/ON-X-Security-Advisory-Ip-label-Ekara-Newtest-CVE-2022-23334.pdf	af854a3a-2127-422b-91ae-364da2661108	Broken Link
https://www.on-x.com/wp-content/uploads/2023/01/ON-X-Security-Advisory-Ip-label-Ekara-Newtest-CVE-2022-23334.pdf	134c704f-9b21-4f2e-91b3-4a467353bcc0	Broken Link