CVE-2022-30670

RoboHelp Server earlier versions than RHS 11 Update 3 are affected by an Improper Authorization vulnerability which could lead to privilege escalation. An authenticated attacker could leverage this vulnerability to achieve full administrator privileges. Exploitation of this issue does not require user interaction.

Published: Jun 16, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-30670
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9
AV:N/AC:L/Au:S/C:C/I:C/A:C

CWEs:

CWE-285

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
adobe / robohelp_server	-	11
adobe / robohelp_server	11-update1	11-update1.x
adobe / robohelp_server	11-update2	11-update2.x
adobe / robohelp_server	11-update3	11-update3.x
adobe / robohelp_server	11	11.x

https://helpx.adobe.com/security/products/robohelp-server/apsb22-31.html

Vulnerability Database

290,206

CVE-2022-30670