PT-2022-15935 · Dataease · Dataease
Espduino
·
Published
2022-02-08
·
Updated
2023-08-08
·
CVE-2022-23331
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
DataEase version 1.6.1
Description
The issue allows an authenticated user to gain unauthorized access to all user information and change the administrator password.
Recommendations
For DataEase version 1.6.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Dataease