PT-2022-3484 · Unknown · Data Center Expert
Published
2022-06-14
·
Updated
2023-02-07
·
CVE-2022-32520
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Data Center Expert versions prior to 7.9.0
Description
The issue is related to insufficient protection of registration data in the Data Center Expert software. This could allow a remote attacker to gain full control over the software. The vulnerability may result in unwanted access to a Data Center Expert instance when exploited over a network by a malicious third-party.
Recommendations
For versions prior to 7.9.0, update to version 7.9.0 or later to resolve the issue.
Fix
Insufficiently Protected Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Data Center Expert