CVE-2023-22389EPSS p37.4%

CVE-2023-22389CVE-2023-22389

snapav / wattbox_wb-300-ip-3_firmware

Description

Snap One Wattbox WB-300-IP-3 versions WB10.9a17 and prior store passwords in a plaintext file when the device configuration is exported via Save/Restore–>Backup Settings, which could be read by any user accessing the file.  

Scoring

CVSS 5.7 ()
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS0.48% probability of exploitation · percentile 37.4% · 2026-06-18T12:00:27Z
Last modified2026-06-17
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.