PT-2023-14638 · Temenos · Temenos Cwx

Whitebearvn

Publicado

2023-06-21

Atualizado

2024-12-06

CVE-2022-45287

CVSS v3.1

8.8

Alta

Vetor

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Temenos CWX version 8.5.6

Description The issue is related to an access control problem in the Registration.aspx file, allowing authenticated attackers to escalate privileges and execute arbitrary administrative commands.

Recommendations For Temenos CWX version 8.5.6, consider restricting access to the Registration.aspx file until a patch is available. As a temporary workaround, limit the privileges of authenticated users to prevent them from performing administrative commands.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2022-45287

Produtos afetados

Temenos Cwx

PT-2023-14638 · Temenos · Temenos Cwx

CVE-2022-45287

Identificadores relacionados

Produtos afetados

Referências · 6