VYPR
Unrated severityNVD Advisory· Published Jun 29, 2022· Updated Aug 3, 2024

CVE-2022-31266

CVE-2022-31266

Description

In ILIAS through 7.10, lack of verification when changing an email address (on the Profile Page) allows remote attackers to take over accounts.

Affected products

2
  • Ilias/Iliascpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=7.10

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.