CVE-2022-30670

Name of the Vulnerable Software and Affected Versions RoboHelp Server versions earlier than 11 Update 3

Description The issue is related to an Improper Authorization vulnerability, which could lead to privilege escalation. An authenticated attacker could leverage this vulnerability to achieve full administrator privileges. Exploitation of this issue does not require user interaction. The vulnerability is associated with deficiencies in the authorization procedure, allowing a remote attacker to elevate their privileges.

Recommendations For versions earlier than RHS 11 Update 3, update to RHS 11 Update 3 or later to resolve the issue. As a temporary workaround, consider restricting access to administrator privileges until a patch is applied.