Device42 CMDB Improper Access Control (CVE-2022-1401)

An improper access control vulnerability exists in Device42 CMDB. Successful exploitation of this vulnerability could allow a remote attacker to read sensitive files on the affected system...

CVE-2022-1401

Improper Access Control vulnerability in the /Exago/WrImageResource.adx route as used in Device42 Asset Management Appliance allows an unauthenticated attacker to read sensitive server files with root permissions. This issue affects: Device42 CMDB versions prior to 18.01.00...

CVE-2022-1401

CVE-2022-1401 concerns improper access control in Device42 CMDB prior to 18.01.00. The vulnerability exists in the /Exago/WrImageResource.adx route, enabling an unauthenticated attacker to read sensitive server files with root permissions. Affected: Device42 CMDB versions before 18.01.00. Root ca...

CVE-2022-1401 Insufficient validation of provided paths in Exago WrImageResource.axd

Improper Access Control vulnerability in the /Exago/WrImageResource.adx route as used in Device42 Asset Management Appliance allows an unauthenticated attacker to read sensitive server files with root permissions. This issue affects: Device42 CMDB versions prior to 18.01.00...

CVE-2022-1401

creationtimestamp| type| source ---|---|--- 2022-08-12 07:58:28+00:00| seen| https://t.me/itsecnews/1177 2022-08-12 14:01:03+00:00| seen| https://t.me/truesecator/3287...

Critical Flaws Disclosed in Device42 IT Asset Management Software

Cybersecurity researchers have disclosed multiple severe security vulnerabilities asset management platform Device42 that, if successfully exploited, could enable a malicious actor to seize control of affected systems. "By exploiting these issues, an attacker could impersonate other users, obtain...