How severe is CVE-2022-45895?

CVE-2022-45895 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2022-45895

Name: planet_estream
Author: planetestream

6.5MEDIUM

Planet eStream before 6.72.10.07 discloses sensitive information, related to the ON cookie (findable in HTML source code for Default.aspx in some situations) and the WhoAmI endpoint (e.g., path disclo

Publicado: 12/25/2022Actualizado: 4/14/2025

Descripción

Planet eStream before 6.72.10.07 discloses sensitive information, related to the ON cookie (findable in HTML source code for Default.aspx in some situations) and the WhoAmI endpoint (e.g., path disclosure).

Análisis IAImpulsado por IA

Productos Afectados

planetestreamplanet_estream

Referencias

https://sec-consult.com/vulnerability-lab/advisory/multiple-critical-vulnerabilities-in-planet-enterprises-ltd-planet-estream/
ExploitThird Party Advisory
https://sec-consult.com/vulnerability-lab/advisory/multiple-critical-vulnerabilities-in-planet-enterprises-ltd-planet-estream/
ExploitThird Party Advisory