PT-2023-15445 · Isode · M-Link
Published
2023-01-01
·
Updated
2025-04-10
·
CVE-2022-47634
CVSS v3.1
8.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Isode M-Link versions R16.2v1 through R17.0 before R17.0v24
Description
The issue allows non-administrative users to access and manipulate archive data via certain HTTP endpoints.
Recommendations
For versions R16.2v1 through R17.0 before R17.0v24, update to version R17.0v24 or later to resolve the issue.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
M-Link