CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-38492

An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. One parameter allows SQL injection. Version 2022.1.110.1.02 fixes the vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.0%

CVSS Severity

CVSS v3 Score 7.7

References

https://excellium-services.com/cert-xlm-advisory/CVE-2022-38492
https://excellium-services.com/cert-xlm-advisory/CVE-2022-38492

Products affected by CVE-2022-38492

Easyvista » Service Manager » Version: 2020.2.125.3

cpe:2.3:a:easyvista:service_manager:2020.2.125.3
Easyvista » Service Manager » Version: 2022.1.109.0.03

cpe:2.3:a:easyvista:service_manager:2022.1.109.0.03

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-38492

Products

Pricing

Contact Us