CVE-2022-21937
Description
Under certain circumstances, a vulnerability in Metasys ADS/ADX/OAS 10 versions prior to 10.1.5 and Metasys ADS/ADX/OAS 11 versions prior to 11.0.2 could allow a user to inject malicious code into the web interface.
Related CPE's
References
Vendor Advisory
Third Party AdvisoryUS Government Resource
CvssV3 impact
Could not find any metrics
CvssV2 impact
AccessComplexity | HIGH |
ConfidentialityImpact | NONE |
AvailabilityImpact | NONE |
IntegrityImpact | PARTIAL |
BaseScore | 2.0999999046325684 |
VectorString | AV:N/AC:H/Au:S/C:N/I:P/A:N |
Version | 2.0 |
AccessVector | NETWORK |
Authentication | SINGLE |