Information Disclosure Vulnerability in Multi Store Inventory Management System by Vendor
CVE-2022-28991

7.5HIGH

Key Information:

Vendor: Bdtask
Status: Multi Store Inventory Management System
Vendor: CVE Published:; 20 May 2022

What is CVE-2022-28991?

The Multi Store Inventory Management System v1.0 has been found to be susceptible to an information disclosure vulnerability. This flaw enables attackers to gain unauthorized access to sensitive files, potentially exposing critical data stored within the system. Timely remediation is essential to mitigate the risks associated with this vulnerability and to protect sensitive information from illicit access.

References

https://packetstormsecurity.com/files/166590/Multi-Store-...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 20, 2022
Vulnerability Reserved
Apr 11, 2022

Bdtask

What is CVE-2022-28991?

References

CVSS V3.1

Timeline