Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-47880

Published: 12/05/2023 Updated: 24/05/2023
CVSS v3 Base Score: 5.3 | Impact Score: 3.6 | Exploitability Score: 1.6
VMScore: 0

Vulnerability Summary

An Information disclosure vulnerability in /be/rpc.php in Jedox GmbH Jedox 2020.2.5 allow remote, authenticated users with permissions to modify database connections to disclose a connections' cleartext password via the 'test connection' function.

Vulnerable Product Search on Vulmon Subscribe to Product

jedox jedox 2020.2.5

jedox jedox cloud -

Exploits

Exploit DB: Jedox 2022.4.2 Database Credential Disclosure
Jedox version 202242 has an information disclosure vulnerability in /be/rpcphp that allows remote authenticated users with the appropriate permissions to modify database connections to disclose the clear text credentials via the test connection function ...

References

CWE-522http://jedox.comhttps://docs.syslifters.com/assets/vulnerability-disclosure/Vulnerability-Disclosure-Jedox-Jedox-04-2023.pdfhttps://nvd.nist.govhttps://packetstormsecurity.com/files/172157/Jedox-2022.4.2-Database-Credential-Disclosure.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710arbitrary CVE-2024-5272CVE-2024-2961brute forceremoteCVE-2024-32944CVE-2024-36241CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook