COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2022-38619

CVE-2022-38619

Severity
critical
Source
NVD · cve
Published
2022-09-21
CVSS
9.8
Reference
https://nvd.nist.gov/vuln/detail/CVE-2022-38619
shame 35/100

SmartVista SVFE2 v2.2.22 was discovered to contain a SQL injection vulnerability via the UserForm:j_id90 parameter at /SVFE2/pages/feegroups/mcc_group.jsf.

Players implicated

bpcbt · vendorsmartvista front-end · product

Description

SmartVista SVFE2 v2.2.22 was discovered to contain a SQL injection vulnerability via the UserForm:j_id90 parameter at /SVFE2/pages/feegroups/mcc_group.jsf.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.