CVE-2022-45840

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 13, 2024
CWE ID 862

Summary

CVE-2022-45840 is a Missing Authorization vulnerability that affects the Lucian Apostol Auto Affiliate Links software, specifically versions from n/a to 6.2.1.5. Hackers can exploit this issue by taking advantage of incorrectly configured access control security levels, gaining unauthorized access to sensitive data or functionality. This vulnerability poses a serious risk to users, and it is crucial to update the software to a secure version as soon as possible to mitigate the threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share