Security Advisory

CVE-2022-28719

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-28 08:25:12

Last updated 2024-08-03 06:03:52

Assigner jpcert

State PUBLISHED

Description

Missing authentication for critical function in AssetView prior to Ver.13.2.0 allows a remote unauthenticated attacker with some knowledge on the system configuration to upload a crafted configuration file to the managing server, which may result in the managed clients to execute arbitrary code with the administrative privilege.

← Browse all CVEs View on cve.org ↗