cve/2022/CVE-2022-22833.md

CVE-2022-22833

Description

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can obtain sensitive information via a /js/app.js request.

POC

Reference

• http://packetstormsecurity.com/files/165867/Servisnet-Tessa-MQTT-Credential-Disclosure.html
• https://pentest.com.tr/exploits/Servisnet-Tessa-MQTT-Credentials-Dump-Unauthenticated.html
• https://www.exploit-db.com/exploits/50713

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/Enes4xd/Enes4xd
• https://github.com/Enes4xd/aleyleiftaradogruu
• https://github.com/Enes4xd/ezelnur6327
• https://github.com/Enes4xd/kirik_kalpli_olan_sayfa
• https://github.com/Enes4xd/salih_.6644
• https://github.com/Enes4xd/salihalkan4466
• https://github.com/aleyleiftaradogruu/aleyleiftaradogruu
• https://github.com/cayserkiller/cayserkiller
• https://github.com/cr0ss2018/cr0ss2018
• https://github.com/crossresmii/cayserkiller
• https://github.com/crossresmii/crossresmii
• https://github.com/crossresmii/salihalkan4466
• https://github.com/ezelnur6327/Enes4xd
• https://github.com/ezelnur6327/enesamaafkolan
• https://github.com/ezelnur6327/ezelnur6327
• https://github.com/xr4aleyna/Enes4xd
• https://github.com/xr4aleyna/aleyleiftaradogruu
• https://github.com/xr4aleyna/crossresmii
• https://github.com/xr4aleyna/xr4aleyna