Privilege Escalation through Unauthorized Password Change Functionality

Privilege Escalation through Unauthorized Password Change Functionality

CVE-2022-31765 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected devices do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges.

Learn more about our Web App Pen Testing.