3 matches found
CVE-2022-45164
An issue was discovered in Archibus Web Central 2022.03.01.107. A service exposed by the application allows a basic user to cancel delete a booking, created by someone else - even if this basic user is not a member of the booking...
CVE-2022-45164
An issue was discovered in Archibus Web Central 2022.03.01.107. A service exposed by the application allows a basic user to cancel delete a booking, created by someone else - even if this basic user is not a member of the booking...
CVE-2022-45164
CVE-2022-45164 — Summary (MODE C) Affected product: Archibus Web Central version 2022.03.01.107. Vulnerability: A service exposed by the Archibus Web Central application permits a basic user, who is not a member of a booking, to cancel (delete) that booking created by someone else. Impact: Unauth...