Gss: >> Vitals Enterprise Social Platform >> 6.2.0 Security Vulnerabilities
Galaxy Software Services Vitals ESP is vulnerable to using a hard-coded encryption key. An unauthenticated remote attacker can generate a valid token parameter and exploit this vulnerability to access system to operate processes and access data.
This issue affects Vitals ESP: from 3.0.8 through 6.2.0.
CVSS Score
8.6
EPSS Score
0.002
Published
2023-07-21