Privilege Escalation through Unauthorized Password Change Functionality
CVE-2022-31765 · HIGH Severity
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected devices do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges.
Learn more about our Web App Pen Testing.