Medium severity5.1NVD Advisory· Published Feb 11, 2025· Updated Apr 15, 2026
CVE-2022-35202
CVE-2022-35202
Description
A security issue in Sitevision version 10.3.1 and older allows a remote attacker, in certain (non-default) scenarios, to gain access to the private keys used for signing SAML Authn requests. The underlying issue is a Java keystore that may become accessible and downloadable via WebDAV. This keystore is protected with a low-complexity, auto-generated password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <=10.3.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.