Security Advisory

CVE-2022-23765

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-17 20:24:23

Last updated 2024-08-03 03:51:46

Assigner krcert

State PUBLISHED

Description

This vulnerability occured by sending a malicious POST request to a specific page while logged in random user from some family of IPTIME NAS. Remote attackers can steal root privileges by changing the password of the root through a POST request.

← Browse all CVEs View on cve.org ↗