CVE-2022-23342
CVE-2022-23342 affects Hyland OnBase Application Server and OnBase releases prior to 20.3.58.1000 and 21.1.1.1000–21.1.15.1000. The issue is a username enumeration vulnerability: an attacker can determine valid usernames by inspecting responses to POST requests to the endpoint /mobilebroker/Servi...