Vulnerability Details CVE-2022-43438
The Administrator function of EasyTest has an Incorrect Authorization vulnerability. A remote attacker authenticated as a general user can exploit this vulnerability to bypass the intended access restrictions, to make API functions calls, manipulate system and terminate service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.6%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2022-43438
-
cpe:2.3:a:easy_test_project:easy_test:17l18s
-
cpe:2.3:a:easy_test_project:easy_test:22h29