CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-34907

An authentication bypass vulnerability exists in FileWave before 14.6.3 and 14.7.x before 14.7.2. Exploitation could allow an unauthenticated actor to gain access to the system with the highest authority possible and gain full control over the FileWave platform.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.3%

CVSS Severity

CVSS v3 Score 9.8

References

https://claroty.com/2022/07/25/blog-research-with-management-comes-risk-finding-flaws-in-filewave-mdm/
https://kb.filewave.com/pages/viewpage.action?pageId=55544244
https://claroty.com/2022/07/25/blog-research-with-management-comes-risk-finding-flaws-in-filewave-mdm/
https://kb.filewave.com/pages/viewpage.action?pageId=55544244

Products affected by CVE-2022-34907

Filewave » Filewave » Version: N/A

cpe:2.3:a:filewave:filewave:-
Filewave » Filewave » Version: 14.7.0

cpe:2.3:a:filewave:filewave:14.7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-34907

Products

Pricing

Contact Us