Vulnerabilities > CVE-2022-45167 - Unspecified vulnerability in Archibus web Central 2022.03.01.107

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

archibus

NVD

Published: 2023-01-10

Updated: 2023-01-14

Summary

An issue was discovered in Archibus Web Central 2022.03.01.107. A service exposed by the application allows a basic user to access the profile information of all connected users.

Vulnerable Configurations

Part	Description	Count
Application	Archibus Archibus Archibus WEB Central 2022.03.01.107	1

References

https://excellium-services.com/cert-xlm-advisory/CVE-2022-45167/