CVE-2022-25577 Vulnerability Details

  /     /     /  

CVE-2022-25577 Metadata Quick Info

CVE Published: 25/03/2022 | CVE Updated: 03/08/2024 | CVE Year: 2022
Source: mitre | Vendor: n/a | Product: n/a
Status : PUBLISHED

---

CVE-2022-25577 Description

ALF-BanCO v8.2.5 and below was discovered to use a hardcoded password to encrypt the SQLite database containing the user\'s data. Attackers who are able to gain remote or local access to the system are able to read and modify the data.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: n/a
Source: n/a

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).