High severity7.5NVD Advisory· Published May 25, 2022· Updated Jun 17, 2026
CVE-2022-26303
CVE-2022-26303
Description
An external config control vulnerability exists in the OAS Engine SecureAddUser functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted series of network requests can lead to the creation of an OAS user account. An attacker can send a sequence of requests to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = V16.00.0112
- Open Automation Software/OAS Platformv5Range: V16.00.0112
Patches
Vulnerability mechanics
References
1- talosintelligence.com/vulnerability_reports/TALOS-2022-1488nvdExploitMitigationThird Party Advisory
News mentions
0No linked articles in our index yet.