TVN ID | TVN-202209005 |
---|---|
CVE ID | CVE-2022-39032 |
CVSS | 8.8 (High) CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Affected Products | Smart eVision ver.2022.02.21 |
Description | Smart eVision has an improper privilege management vulnerability. A remote attacker with general user privilege can exploit this vulnerability to escalate to administrator privilege, and then perform arbitrary system command or disrupt service. |
Solution | Update Smart eVision version to 2022.06.16 |
Credit | Gary Tan, Zac Wang (Talent-Jump) |
Public Date | 2022-09-28 |