Vulnerabilities > CVE-2022-4280 - Unspecified vulnerability in Dottech Smart Campus System

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

dottech

NVD

Published: 2022-12-03

Updated: 2023-11-07

Summary

A vulnerability, which was classified as problematic, has been found in Dot Tech Smart Campus System. Affected by this issue is some unknown functionality of the file /services/Card/findUser. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-214778 is the identifier assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Dottech Dottech Smart Campus System -	1

References

https://github.com/Peanut886/Vulnerability/blob/main/Information%20leakage%20vulnerability%20exists%20in%20findUser%2C%20a%20smart%20campus%20system%20developed%20by%20Dot%20Tech.md
https://vuldb.com/?id.214778