Vulnerability identifier: #VU65433

Vulnerability risk: Medium

CVSSv3.1: 8.3 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:C]

CVE-ID: CVE-2022-32119

CWE-ID: CWE-434

Exploitation vector: Network

Exploits in database: 2

• July 20, 2022
  • CVE-2022-32119 () [Github]
  • CVE-2022-32119 (CVE-2022-32119 - Arox-Unrestricted-File-Upload) [Github]

Impact: Code execution

Vulnerable software:
School ERP Pro
Client/Desktop applications / Other client software

Vendor: Arox