PT-2022-3520 · Unknown · Data Center Expert
Published
2022-06-14
·
Updated
2023-02-07
·
CVE-2022-32518
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Data Center Expert versions prior to 7.9.0
Description
The issue is related to insufficient protection of registration data, which could allow a remote attacker to gain full control over the software. This could result in unwanted access to a Data Center Expert instance when performed over a network by a malicious third-party.
Recommendations
For versions prior to 7.9.0, update to version 7.9.0 or later to resolve the issue.
Fix
Insufficiently Protected Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Data Center Expert