CVE-2022-43326 Information

Description

An Insecure Direct Object Reference (IDOR) vulnerability in the password reset function of Telos Alliance Omnia MPX Node 1.0.0-1.4.[] allows attackers to arbitrarily change user and Administrator account passwords.

Reference

https://cyber-guy.gitbook.io/cyber-guys-blog/pocs/cve-2022-43326