PT-2022-19201 · Unknown · Aenrich Ehrd Learning Management Key Performance Indicator System

Sameer S. Mohite

Published

2022-09-09

Updated

2022-09-14

CVE-2022-28740

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions aEnrich eHRD Learning Management Key Performance Indicator System version 5+

Description The issue concerns the exposure of sensitive information to unauthorized actors.

Recommendations For version 5+, consider restricting access to sensitive information until a patch or fix is available. As a temporary workaround, review and adjust the system's access controls to minimize the risk of unauthorized access.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-28740

Affected Products

Aenrich Ehrd Learning Management Key Performance Indicator System

CVE-2022-28740

Related Identifiers

Affected Products

References · 5