High severity7.5NVD Advisory· Published Sep 9, 2022· Updated Jun 17, 2026
CVE-2022-28742
CVE-2022-28742
Description
aEnrich eHRD Learning Management Key Performance Indicator System 5+ has Improper Access Control. The web application does not validate user session when accessing many application pages. This can allow an attacker to gain unauthenticated access to sensitive functionalities in the application
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- aEnrich/eHRD Learning Management Key Performance Indicator Systemdescription
- Range: +
Patches
Vulnerability mechanics
References
2- github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0036/MNDT-2022-0036.mdnvdThird Party Advisory
- www.aenrich.com.twnvdVendor Advisory
News mentions
0No linked articles in our index yet.