CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 1CVE-2022-45287
https://notcve.org/view.php?id=CVE-2022-45287
21 Jun 2023 — An access control issue in Registration.aspx of Temenos CWX 8.5.6 allows authenticated attackers to escalate privileges and perform arbitrary Administrative commands. • http://cwx.com •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-34797
https://notcve.org/view.php?id=CVE-2023-34797
15 Jun 2023 — Broken access control in the Registration page (/Registration.aspx) of Termenos CWX v8.5.6 allows attackers to access sensitive information. Un control de acceso defectuoso en la página de registro (/Registration.aspx) de Termenos CWX v8.5.6 permite a los atacantes acceder a información confidencial. • https://github.com/WhiteBearVN/CWX-Registration-Broken-Access-Control • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2019-13403
https://notcve.org/view.php?id=CVE-2019-13403
17 Jul 2019 — Temenos CWX version 8.9 has an Broken Access Control vulnerability in the module /CWX/Employee/EmployeeEdit2.aspx, leading to the viewing of user information. Temenos CWX versión 8.9 tiene una vulnerabilidad del Control de Acceso Roto en el módulo /CWX/Employee/EmployeeEdit2.aspx, que conlleva a la visualización de la información del usuario. • https://github.com/B3Bo1d/CVE-2019-13403 •