Vulnerabilities > Device42 > Cmdb

DATE CVE VULNERABILITY TITLE RISK
2022-08-17 CVE-2022-1401 Incorrect Authorization vulnerability in Device42 Cmdb
Improper Access Control vulnerability in the /Exago/WrImageResource.adx route as used in Device42 Asset Management Appliance allows an unauthenticated attacker to read sensitive server files with root permissions.
network
low complexity
device42 CWE-863
7.5
7.5