Vulnerability Description
Call Center System developed by Bulutses Information Technologies before version 3.0 has an unauthenticated Sql Injection vulnerability. This has been fixed in the version 3.0
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bulutses | Bulutdesk Callcenter | < 3.0 |
Related Weaknesses (CWE)
References
- https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-22-0747
- https://www.usom.gov.tr/bildirim/tr-22-0747Third Party Advisory
- https://www.usom.gov.tr/bildirim/tr-22-0747Third Party Advisory
FAQ
What is CVE-2022-4422?
CVE-2022-4422 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Call Center System developed by Bulutses Information Technologies before version 3.0 has an unauthenticated Sql Injection vulnerability. This has been fixed in the version 3.0
How severe is CVE-2022-4422?
CVE-2022-4422 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-4422?
Check the references section above for vendor advisories and patch information. Affected products include: Bulutses Bulutdesk Callcenter.