Authentication flaw

2012-11-1000:55:00

PRIOn knowledge base

www.prio-n.com

7.4 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

67.9%

JSON

Advanced Productivity Software DTE Axiom before 12.3.3 does not validate the registration ID, which allows remote attackers to bypass authentication and read or modify data about users, customers, and projects via unspecified vectors.

CPENameOperatorVersion
dte_axiomle12.3.2

CPE	Name	Operator	Version
	dte_axiom	le	12.3.2

References

seclists.org/fulldisclosure/2012/Sep/62

secunia.com/advisories/50508

www.osvdb.org/85499