Security Advisory

CVE-2022-27960

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-10 21:01:39

Last updated 2024-08-03 05:41:11

Assigner mitre

State PUBLISHED

Description

Insecure permissions configured in the user_id parameter at SysUserController.java of OFCMS v1.1.4 allows attackers to access and arbitrarily modify users personal information.

← Browse all CVEs View on cve.org ↗