PT-2022-24347 · Ucms · Ucms
Published
2022-09-12
·
Updated
2022-09-15
·
CVE-2022-38297
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
UCMS version 1.6.0
Description
The issue is an authentication bypass vulnerability that can be exploited through cookie poisoning.
Recommendations
For UCMS version 1.6.0, update to a version that contains a fix for this issue, as the current version is affected by an authentication bypass vulnerability.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ucms