CVE-2022-30356
- Reference to the description:
- Description:
- OvalEdge 5.2.8.0 and earlier is affected by a Privilege Escalation vulnerability via a POST request to /user/assignuserrole via the userid and role parameters . Authentication is required with OE_ADMIN role privilege.
- Last updated date:
- 10/31/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 10/31/2024
- Reference url to background
https://cve.offsecguy.com/ovaledge/vulnerabilities/privilege-escalation#cve-2022-30356