Lucene search
China National Vulnerability DatabaseCNVD-2022-77869HistoryMay 13, 2022 - 12:00 a.m.
Bus Pass Management System Insecure Direct Object Reference Vulnerability
2022-05-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
bus pass management
direct object reference
vulnerability
version 1.0
viewid parameter
user permissions
target accesses
attacker exploit
sensitive information
insecure
EPSS
0.004
Percentile
73.3%
Bus Pass Management System is a bus pass management system. version 1.0 of Bus Pass Management System is vulnerable to an insecure direct object reference vulnerability that stems from the viewid parameter failing to check user permissions on all target object accesses. An attacker could exploit this vulnerability to access sensitive information.
Related
cvelist
cvelist
CVE-2022-29008
2022-05-11 13:08:03
nvd
nvd
CVE-2022-29008
2022-05-11 14:15:08
prion
prion
Information disclosure
2022-05-11 14:15:00
cve
cve
CVE-2022-29008
2022-05-11 14:15:08