CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Microstrategy: >> Enterprise Manager >> 2022 Security Vulnerabilities

CVE-2022-29596

MicroStrategy Enterprise Manager 2022 allows authentication bypass by triggering a login failure and then entering the Uid=/../../../../../../../../../../../windows/win.ini%00.jpg&Pwd=_any_password_&ConnMode=1&3054=Login substring for directory traversal.

CVSS Score

9.8

EPSS Score

0.001

Published

2022-05-11

Page 1

Vulnerabilities

Vulnerable Software

Microstrategy: >> Enterprise Manager >> 2022 Security Vulnerabilities

Products

Pricing

Contact Us