Today > 1 Critical | 2 High | 6 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2022-30354

Oct. 28, 2024, 1:58 p.m.

Product(s) Impacted

OvalEdge

  • 5.2.8.0 and earlier

Description

OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET request to /user/getUserWithTeam. Authentication is required. The information disclosed is associated with all registered user ID numbers.

Weaknesses

Date

Published: Oct. 25, 2024, 4:15 p.m.

Last Modified: Oct. 28, 2024, 1:58 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References