CVE-2022-45166

An issue was discovered in Archibus Web Central 2022.03.01.107. A service exposed by the application accepts a set of user-controlled parameters that are used to act on the data returned to the user. It allows a basic user to access data unrelated to their role.
References
Configurations

Configuration 1

cpe:2.3:a:archibus:archibus_web_central:2022.03.01.107:*:*:*:*:*:*:*

Information

Published : 2023-01-10 09:15

Updated : 2023-01-14 04:30


NVD link : CVE-2022-45166

Mitre link : CVE-2022-45166

Products Affected
No products.