VYPR
High severity8.8NVD Advisory· Published Sep 19, 2022· Updated Jun 17, 2026

CVE-2022-38577

CVE-2022-38577

Description

ProcessMaker before v3.5.4 was discovered to contain insecure permissions in the user profile page. This vulnerability allows attackers to escalate normal users to Administrators.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.