Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-45164

Disclosure Date: January 10, 2023 (last updated February 24, 2025)
An issue was discovered in Archibus Web Central 2022.03.01.107. A service exposed by the application allows a basic user to cancel (delete) a booking, created by someone else - even if this basic user is not a member of the booking
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0