2 matches found
CVE-2022-39811
Italtel NetMatch-S CI 5.2.0-20211008 has incorrect Access Control under NMSCI-WebGui/advancedsettings.jsp and NMSCIWebGui/SaveFileUploader. By not verifying permissions for access to resources, it allows an attacker to view pages that are not allowed, and modify the system configuration, bypassin...
CVE-2022-39811
This CVE (CVE-2022-39811) affects Italtel NetMatch-S CI 5.2.0-20211008. The root cause is incorrect access control in NMSCI-WebGui/advancedsettings.jsp and NMSCIWebGui/SaveFileUploader, where permissions are not verified for resource access. As described, an attacker could view pages that should ...