| ID |
CVE-2025-22492
|
| Sažetak |
The connection string visible to users with access to FRSCore database on Foreseer Reporting Software (FRS) VM, this
string can be used for gaining administrative access to the 4crXref database. This vulnerability has been resolved in the latest version 1.5.100 of FRS. |
| Reference |
|
| CVSS |
| Base: | 6.3 |
| Impact: | 5.5 |
| Exploitability: | 0.8 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| LOCAL |
LOW |
HIGH |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| HIGH |
HIGH |
LOW |
|
| CVSS vektor |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L |
| Zadnje važnije ažuriranje |
28-02-2025 - 09:15 |
| Objavljeno |
28-02-2025 - 09:15 |
