Medium severity5.4NVD Advisory· Published May 30, 2023· Updated Jun 17, 2026
CVE-2022-36249
CVE-2022-36249
Description
Shop Beat Solutions (Pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Bypass 2FA via APIs. For Controlpanel Lite. "After login we are directly able to use the bearer token or jsession ID to access the apis instead of entering the 2FA code. Thus, leading to bypass of 2FA on API level.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 2.5.95 - 3.2.57
- Shop Beat/studiov5Range: studio
Patches
Vulnerability mechanics
References
1- www.shopbeat.co.zanvdProduct
News mentions
0No linked articles in our index yet.