Security Advisory

CVE-2022-43685

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-11-22 00:00:00

Last updated 2025-04-29 04:14:31

Assigner mitre

State PUBLISHED

Description

CKAN through 2.9.6 account takeovers by unauthenticated users when an existing user id is sent via an HTTP POST request. This allows a user to take over an existing account including superuser accounts.

← Browse all CVEs View on cve.org ↗