Vulnerabilities > Microstrategy > Enterprise Manager > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-05-11 CVE-2022-29596 Path Traversal vulnerability in Microstrategy Enterprise Manager 2022
MicroStrategy Enterprise Manager 2022 allows authentication bypass by triggering a login failure and then entering the Uid=/../../../../../../../../../../../windows/win.ini%00.jpg&Pwd=_any_password_&ConnMode=1&3054=Login substring for directory traversal.
network
low complexity
microstrategy CWE-22
critical
 9.8
9.8