High severity8.8NVD Advisory· Published Sep 19, 2022· Updated Jun 17, 2026
CVE-2022-38351
CVE-2022-38351
Description
A vulnerability in Suprema BioStar (aka Bio Star) 2 v2.8.16 allows attackers to escalate privileges to System Administrator via a crafted PUT request to the update profile page.
Affected products
1Patches
Vulnerability mechanics
References
2- nobugescapes.com/blog/privilege-escalation-from-user-operator-to-system-administrator/nvdExploitThird Party Advisory
- nobugescapes.com/wp-content/uploads/2022/08/Part1.docxnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.