Unrated severityNVD Advisory· Published Aug 16, 2022· Updated Sep 16, 2024
Remote code execution in scheduled tasks component
CVE-2022-1399
Description
An Argument Injection or Modification vulnerability in the "Change Secret" username field as used in the Discovery component of Device42 CMDB allows a local attacker to run arbitrary code on the appliance with root privileges. This issue affects: Device42 CMDB version 18.01.00 and prior versions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Device42/CMDBv5Range: unspecified
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.