CVE-2022-3826

Huaxia ERP Retail Management list information disclosure

CVSS 4.3 MEDIUMEPSS 0.6%CWE-266

Vexday Risk Score

13Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS 4.3EPSS 0.6%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

02 nov 2022Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

A vulnerability was found in Huaxia ERP. It has been classified as problematic. This affects an unknown part of the file /depotHead/list of the component Retail Management. The manipulation of the argument search leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-212793 was assigned to this vulnerability.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Produtos afetados

Huaxia · ERP

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/Ha0Liu/cveAdd/blob/developer/README.EN.yuequan.md https://vuldb.com/?id.212793