CVE-2022-22572

Summary

A non-admin user with user management permission can escalate his privilege to admin user via password reset functionality. The vulnerability affects Incapptic Connect version < 1.40.1.

Affected Software

VendorProductVersion RangeStatus
n/aIvanti Incapptic Connect1.40.2affected

Weaknesses

  • Privilege Escalation (CAPEC-233)

ADP Enrichment

CVE Program Container

Additional References

References