CVE-2022-45634

Опубликовано: 22 мар. 2023

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows authenticated attacker to gain access to sensitive account information

Ссылки

https://github.com/WithSecureLabs/megafeis-palm/tree/main/CVE-2022-45634
Exploit
Third Party Advisory
https://labs.withsecure.com/advisories/username-disclosure-vulnerability-in-dbd--application-used-by-me
Exploit
Third Party Advisory
https://github.com/WithSecureLabs/megafeis-palm/tree/main/CVE-2022-45634
Exploit
Third Party Advisory
https://labs.withsecure.com/advisories/username-disclosure-vulnerability-in-dbd--application-used-by-me
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:megaeis:dbd\+:1.4.4:*:*:*:*:andoird:*:*

cpe:2.3:a:megaeis:dbd\+:1.4.4:*:*:*:*:iphone_os:*:*

EPSS

Процентиль: 40%

0.0018

Низкий

4.3 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-200

Связанные уязвимости

GHSA-8jmw-qhrj-j54v