Unverified Password Change Vulnerability in Metasys ADS/ADX/OAS

Unverified Password Change Vulnerability in Metasys ADS/ADX/OAS

CVE-2022-21935 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

A vulnerability in Metasys ADS/ADX/OAS 10 versions prior to 10.1.5 and Metasys ADS/ADX/OAS 11 versions prior to 11.0.2 allows unverified password change.

Learn more about our Web Application Penetration Testing UK.