Security Advisory

CVE-2022-36672

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-09-01 02:08:13

Last updated 2024-08-03 10:14:27

Assigner mitre

State PUBLISHED

Description

Novel-Plus v3.6.2 was discovered to contain a hard-coded JWT key located in the project config file. This vulnerability allows attackers to create a custom user session.

← Browse all CVEs View on cve.org ↗