CVE-2022-47311 (iboot-pdu4-c20_firmware, iboot-pdu4-n20_firmware, iboot-pdu4a-c10_firmware, iboot-pdu4a-c20_firmware, iboot-pdu4a-n15_firmware, iboot-pdu4a-n20_firmware, iboot-pdu4sa-c10_firmware, iboot-pdu4sa-c20_firmware, iboot-pdu4sa-n15_firmware,

A proprietary protocol for iBoot devices is used for control and keepalive commands. The function compares the username and password; it also contains the configuration data for the user specified. If the user does not exist, then it sends a value for username and password, which allows successful authentication for a connection.

authentication configuration control cve data devices function iboot password protocol username value