CVE-2022-47424

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Nov 19, 2024

CWE ID 352

Summary

CVE-2022-47424 is a Cross-Site Request Forgery (CSRF) vulnerability affecting Repute InfoSystems ARMember and ARMember Premium. The flaw enables an attacker to manipulate a victim's browser into executing unintended actions on the ARMember or ARMember Premium web applications. This issue poses a significant risk for unauthorized data modification, account takeover, or other malicious activities. Users of ARMember versions from n/a through 4.0.5 and ARMember Premium versions from n/a before 6.7.1 are advised to apply the necessary patches or updates to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r-5ZLI
https://www.cve.org/CVERecord?id=CVE-2022-47424
https://nvd.nist.gov/vuln/detail/CVE-2022-47424

Back to Vulnerability Database

CVE-2022-47424

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations