Security Advisory

CVE-2022-34774

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-22 14:41:59

Last updated 2024-09-17 03:55:05

Assigner INCD

State PUBLISHED

Description

Tabit - Arbitrary account modification. One of the endpoints mapped by the tiny URL, was a page where an adversary can modify personal details, such as email addresses and phone numbers of a specific user in a restaurants loyalty program. Possibly allowing account takeover (the mail can be used to reset password).

← Browse all CVEs View on cve.org ↗