CVE-2022-3091

Name of the Vulnerable Software and Affected Versions RONDS EPM version 1.19.5

Description The issue allows unauthenticated users to leak credentials due to a vulnerable function. In certain circumstances, an attacker can exploit this to execute operating system (OS) commands.

Recommendations For RONDS EPM version 1.19.5, update to a version that fixes the vulnerability, as the current version allows unauthenticated users to leak credentials and potentially execute OS commands. At the moment, there is no information about a newer version that contains a fix for this vulnerability.