Lucene search
+L

31 matches found

redhatcve
redhatcve
added 2025/05/23 12:42 a.m.9 views

CVE-2022-22831

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can add a new sysadmin user via a manipulation of the Authorization HTTP header...

9.8CVSS6.8AI score0.11441EPSS
Exploits4References1
redhatcve
redhatcve
added 2025/05/23 12:41 a.m.7 views

CVE-2022-22833

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can obtain sensitive information via a /js/app.js request...

7.5CVSS6.3AI score0.11484EPSS
Exploits4References1
redhatcve
redhatcve
added 2025/05/22 11:51 p.m.8 views

CVE-2022-22832

An issue was discovered in Servisnet Tessa 0.0.2. Authorization data is available via an unauthenticated /data-service/users/ request...

10CVSS7AI score0.14058EPSS
Exploits4References1
nvd
nvd
added 2022/02/06 10:15 p.m.26 views

CVE-2022-22833

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can obtain sensitive information via a /js/app.js request...

7.5CVSS0.11484EPSS
Exploits4References4
attackerkb
attackerkb
added 2022/02/06 10:15 p.m.6 views

CVE-2022-22833

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can obtain sensitive information via a /js/app.js request...

7.5CVSS7.1AI score0.11484EPSS
Exploits4References5
osv
osv
added 2022/02/06 10:15 p.m.6 views

CVE-2022-22833

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can obtain sensitive information via a /js/app.js request...

7.5CVSS5.8AI score0.11484EPSS
Exploits4References4
prion
prion
added 2022/02/06 10:15 p.m.15 views

Cross site request forgery (csrf)

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can obtain sensitive information via a /js/app.js request...

5CVSS7.3AI score0.11484EPSS
Exploits4References4Affected Software1
nvd
nvd
added 2022/02/06 9:15 p.m.30 views

CVE-2022-22832

An issue was discovered in Servisnet Tessa 0.0.2. Authorization data is available via an unauthenticated /data-service/users/ request...

10CVSS0.14058EPSS
Exploits4References4
nvd
nvd
added 2022/02/06 9:15 p.m.9 views

CVE-2022-22831

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can add a new sysadmin user via a manipulation of the Authorization HTTP header...

9.8CVSS0.11441EPSS
Exploits4References4
attackerkb
attackerkb
added 2022/02/06 9:15 p.m.5 views

CVE-2022-22831

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can add a new sysadmin user via a manipulation of the Authorization HTTP header...

9.8CVSS7.2AI score0.11441EPSS
Exploits4References5
osv
osv
added 2022/02/06 9:15 p.m.4 views

CVE-2022-22832

An issue was discovered in Servisnet Tessa 0.0.2. Authorization data is available via an unauthenticated /data-service/users/ request...

9.8CVSS5.8AI score0.14058EPSS
Exploits4References4
osv
osv
added 2022/02/06 9:15 p.m.3 views

CVE-2022-22831

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can add a new sysadmin user via a manipulation of the Authorization HTTP header...

9.8CVSS7.3AI score0.11441EPSS
Exploits4References4
attackerkb
attackerkb
added 2022/02/06 9:15 p.m.9 views

CVE-2022-22832

An issue was discovered in Servisnet Tessa 0.0.2. Authorization data is available via an unauthenticated /data-service/users/ request...

10CVSS7.3AI score0.14058EPSS
Exploits4References5
prion
prion
added 2022/02/06 9:15 p.m.13 views

Authorization

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can add a new sysadmin user via a manipulation of the Authorization HTTP header...

7.5CVSS9.3AI score0.11441EPSS
Exploits4References4Affected Software1
prion
prion
added 2022/02/06 9:15 p.m.16 views

Design/Logic Flaw

An issue was discovered in Servisnet Tessa 0.0.2. Authorization data is available via an unauthenticated /data-service/users/ request...

10CVSS9.5AI score0.14058EPSS
Exploits4References4Affected Software1
cvelist
cvelist
added 2022/02/06 9:11 p.m.31 views

CVE-2022-22833

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can obtain sensitive information via a /js/app.js request...

7.5AI score0.11484EPSS
Exploits4References4
cve
cve
added 2022/02/06 9:11 p.m.148 views

CVE-2022-22833

CVE-2022-22833 affects Servisnet Tessa version 0.0.2. The root cause is exposure of sensitive information through the app.js file, enabling an attacker to obtain confidential data via a /js/app.js request. Public sources listed include Red Hat and CVE records confirming the disclosure vector but ...

7.5CVSS7.2AI score0.11484EPSS
Exploits4References4Affected Software1
cvelist
cvelist
added 2022/02/06 8:54 p.m.40 views

CVE-2022-22832

An issue was discovered in Servisnet Tessa 0.0.2. Authorization data is available via an unauthenticated /data-service/users/ request...

9.8AI score0.14058EPSS
Exploits4References4
cve
cve
added 2022/02/06 8:54 p.m.70 views

CVE-2022-22832

Summary: CVE-2022-22832 affects Servisnet Tessa 0.0.2, where authorization data is exposed via an unauthenticated request to /data-service/users/. This is a privilege-escalation risk because information about users can be retrieved by any user, potentially enabling password data exposure in respo...

10CVSS9.4AI score0.14058EPSS
Exploits4References4Affected Software1
cvelist
cvelist
added 2022/02/06 8:53 p.m.21 views

CVE-2022-22831

An issue was discovered in Servisnet Tessa 0.0.2. An attacker can add a new sysadmin user via a manipulation of the Authorization HTTP header...

9.6AI score0.11441EPSS
Exploits4References4
Rows per page
Query Builder