videnlabs/CVE-2022-22828

Releases0

Write-up of CVE-2022-22828

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-22828 ↗	Jan 27, 2022Thursday, 27 January 2022, 06:15	7.5 HIGH	5 MEDIUM
An insecure direct object reference for the file-download URL in Synametrics SynaMan before 5.0 allows a remote attacker to access unshared files via a modified base64-encoded filename string.