What is the severity of CVE-2022-35413?

CVE-2022-35413 has a severity rating of CRITICAL with a CVSS base score of 9.8.

CVE-2022-35413 | Critical Vulnerability in Pentasecurity WAPPLES

Q: What is CVE-2022-35413?

A critical vulnerability in Pentasecurity's WAPPLES allows for unauthorized access to sensitive system configurations. Immediate action is required to mitigate potential impacts.

WAPPLES, a web application firewall by Pentasecurity, has been identified with a critical vulnerability (CVE-2022-35413) due to a hardcoded administrative account. This flaw allows an attacker to gain unauthorized access to sensitive system configurations, including SSL keys, by sending HTTPS requests to specific URIs on the affected system. The vulnerability has a CVSS score of 9.8, indicating a critical severity level, which signifies that organizations must act quickly to secure their systems.

The impact of this vulnerability is significant, as attackers leveraging this flaw could compromise the integrity and confidentiality of critical information within the WAPPLES system. Organizations utilizing versions of WAPPLES up to 6.0 are particularly vulnerable, as the hardcoded account can be exploited without any user interaction, making it a low-complexity attack vector.

Given the critical nature of this vulnerability, organizations should prioritize patching immediately. The potential repercussions of an attack could include unauthorized access to sensitive data and disruption of service, which could lead to severe financial and reputational damage.

Currently, there is no public exploit available, and the vulnerability has not been marked as actively exploited in the wild. However, the high CVSS score and the nature of the vulnerability warrant immediate attention from security teams.

Vulnerability Details

The WAPPLES product, through version 6.0, has a hardcoded systemi account, which poses a significant risk. The vulnerability is classified under CWE-798, indicating the presence of a hardcoded credential. The CVSS score of 9.8 highlights the critical severity of this issue, with potential impacts on confidentiality, integrity, and availability. This vulnerability was published on September 13, 2022, and is classified as modified.

Technical Analysis

The root cause of this vulnerability is the hardcoded administrative account, which allows attackers to bypass authentication controls entirely. The attack vector is network-based, and the complexity is low, as no privileges or user interactions are required to exploit the vulnerability. This flaw has a high impact on confidentiality, integrity, and availability, making it a serious concern for organizations utilizing WAPPLES.

Risk & Impact Analysis

The risk to organizations includes unauthorized access to sensitive system configurations and confidential information. The potential blast radius is significant, as attackers could exploit this vulnerability to achieve control over the system, leading to further network intrusions or data exfiltration. Given the critical CVSS score and the nature of the vulnerability, organizations should prioritize patching immediately to mitigate these risks.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

All versions of WAPPLES prior to the vendor patch, specifically versions from 4.0.54.1 to 6.0.0, are affected by this vulnerability.

Mitigation & Remediation

Organizations should apply the vendor's patch immediately to remediate this vulnerability. In instances where a patch cannot be applied, implementing strict access controls and monitoring can serve as temporary mitigations. Security configurations should be reviewed to ensure that hardcoded credentials are not utilized in any system.

Detection Guidance

Monitoring should focus on log indicators that could signify unauthorized access attempts. Behavioral anomalies should be investigated, particularly those involving access to the /webapi/ URI on ports 443 or 5001. Network signatures related to these ports should also be scrutinized to detect any potential exploitation.

AppSecure Threat Intelligence Insight

The existence of this vulnerability highlights the critical nature of software security, particularly regarding hardcoded credentials. Organizations must prioritize security assessments and regularly review their systems for similar vulnerabilities to mitigate risks. For further insights on vulnerability management, organizations should consider implementing a effective vulnerability management program and engage in continuous security testing to identify potential weaknesses proactively.

The implications of this vulnerability also underscore the importance of implementing robust security practices such as regular penetration testing and ensuring that all software components are kept up-to-date to prevent exploitation of known vulnerabilities.

Lastly, organizations should remain vigilant and consider leveraging red teaming services to simulate attack scenarios and enhance their overall security posture.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2022-35413: Critical Vulnerability in Pentasecurity WAPPLES