CVE-2022-44096 — Hard-coded Credentials in Management System Project Sanitization Management System

CWE-798 — Hard-coded Credentials3 documents3 sources

Severity

9.8CRITICALNVD

EPSS

0.3%

top 46.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Sanitization Management System Project Sanitization Management System

Timeline

PublishedNov 30

Description

Sanitization Management System v1.0 was discovered to contain hardcoded credentials which allows attackers to escalate privileges and access the admin panel.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

▶NVDsanitization_management_system_project/sanitization_management_system1.0

🔴Vulnerability Details

GHSA

GHSA-jxw9-vrx3-w35q: Sanitization Management System v1↗2022-11-30

▶

CVEList

CVE-2022-44096: Sanitization Management System v1↗2022-11-30

▶