CVE-2022-44013

An issue was discovered in Simmeth Lieferantenmanager before 5.6. An attacker can make various API calls without authentication because the password in a Credential Object is not checked...

Authentication flaw

An issue was discovered in Simmeth Lieferantenmanager before 5.6. An attacker can make various API calls without authentication because the password in a Credential Object is not checked...

PT-2022-27076 · Unknown · Simmeth Lieferantenmanager

Name of the Vulnerable Software and Affected Versions: Simmeth Lieferantenmanager versions prior to 5.6 Description: An issue was discovered where an attacker can make various API calls without authentication because the password in a Credential Object is not checked. This allows unauthorized...

CVE-2022-44013

CVE-2022-44013 affects Simmeth Lieferantenmanager before 5.6. The issue is an authentication bypass where a password in a Credential Object is not checked, allowing unauthenticated API calls. Public sources in connected documents confirm affected software (Simmeth Lieferantenmanager) and the root...