Vulnerability Details CVE-2022-45170
An issue was discovered in LIVEBOX Collaboration vDesk through v018. A Cryptographic Issue can occur under the /api/v1/vencrypt/decrypt/file endpoint. A malicious user, logged into a victim's account, is able to decipher a file without knowing the key set by the user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 13.3%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2022-45170
-
cpe:2.3:a:liveboxcloud:vdesk:-
-
cpe:2.3:a:liveboxcloud:vdesk:018