CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-47880

An Information disclosure vulnerability in /be/rpc.php in Jedox GmbH Jedox 2020.2.5 allow remote, authenticated users with permissions to modify database connections to disclose a connections' cleartext password via the 'test connection' function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.1%

CVSS Severity

CVSS v3 Score 5.3

References

http://jedox.com
https://docs.syslifters.com/assets/vulnerability-disclosure/Vulnerability-Disclosure-Jedox-Jedox-04-2023.pdf
http://jedox.com
https://docs.syslifters.com/assets/vulnerability-disclosure/Vulnerability-Disclosure-Jedox-Jedox-04-2023.pdf

Products affected by CVE-2022-47880

Jedox » Jedox » Version: 2020.2.5

cpe:2.3:a:jedox:jedox:2020.2.5
Jedox » Jedox Cloud » Version: N/A

cpe:2.3:a:jedox:jedox_cloud:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-47880

Products

Pricing

Contact Us