Vulnerabilities > CVE-2022-30277 - Insufficient Session Expiration vulnerability in BD Synapsys 4.20/4.30
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
BD Synapsys™, versions 4.20, 4.20 SR1, and 4.30, contain an insufficient session expiration vulnerability. If exploited, threat actors may be able to access, modify or delete sensitive information, including electronic protected health information (ePHI), protected health information (PHI) and personally identifiable information (PII).
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |