Vulnerabilities > CVE-2022-23331 - Unspecified vulnerability in Dataease 1.6.1

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
dataease

Summary

In DataEase v1.6.1, an authenticated user can gain unauthorized access to all user information and can change the administrator password.

Vulnerable Configurations

Part Description Count
Application
Dataease
1