CVE-2022-31883

Published: Jun 28, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

Marval MSM v14.19.0.12476 is has an Insecure Direct Object Reference (IDOR) vulnerability. A low privilege user is able to see other users API Keys including the Admins API Keys.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://drive.google.com/drive/folders/17Q8ItseCzj5W7wlD6ZFqL0y1N5Emxz4_?usp=sharing

x_refsource_MISC

https://marvalglobal.com/

x_refsource_MISC

https://cyber-guy.gitbook.io/cyber-guy/pocs/marval-msm/idor-leads-to-unauthorized-access-to-api-keys

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-31883

Description

Affected Products

References