CVE-2022-1399

An Argument Injection or Modification vulnerability in the "Change Secret" username field as used in the Discovery component of Device42 CMDB allows a local attacker to run arbitrary code on the appliance with root privileges. This issue affects: Device42 CMDB version 18.01.00 and prior versions.
Configurations

Configuration 1

cpe:2.3:a:device42:cmdb:*:*:*:*:*:*:*:*

Information

Published : 2022-08-17 12:15

Updated : 2022-08-18 07:18


NVD link : CVE-2022-1399

Mitre link : CVE-2022-1399

Products Affected
No products.
CWE