3 matches found
CVE-2022-22831
CVE-2022-22831 affects Servisnet Tessa 0.0.2. An attacker can add a new sysadmin user by manipulating the Authorization HTTP header, due to insufficient validation in that header. The result is an unauthorized, unauthenticated privilege escalation to a highly privileged admin account, with high i...
Servisnet Tessa Authentication Bypass
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Servisnet Tessa - Add sysAdmin User Unauthenticated Metasploit', 'Description' = %q This module exploits an authentication bypass in Servisnet...
Servisnet Tessa - Add sysAdmin User (Unauthenticated) (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Servisnet Tessa - Add sysAdmin User Unauthenticated Metasploit', 'Description' = %q This module exploits an authentication bypass in Servisnet...