Описание
Advanced Productivity Software DTE Axiom before 12.3.3 does not validate the registration ID, which allows remote attackers to bypass authentication and read or modify data about users, customers, and projects via unspecified vectors.
Уязвимые конфигурации
Конфигурация 1Версия до 12.3.2 (включая)
cpe:2.3:a:advance_productivity_software:dte_axiom:*:*:*:*:*:*:*:*
EPSS
Процентиль: 50%
0.0027
Низкий
6.4 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
Advanced Productivity Software DTE Axiom before 12.3.3 does not validate the registration ID, which allows remote attackers to bypass authentication and read or modify data about users, customers, and projects via unspecified vectors.
EPSS
Процентиль: 50%
0.0027
Низкий
6.4 Medium
CVSS2
Дефекты
CWE-264