{"uuid": "c911799a-51e6-4f67-a5c6-7280b36e8b40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-35413", "type": "seen", "source": "https://t.me/arpsyndicate/2777", "content": "#ExploitObserverAlert\n\nCVE-2022-35413\n\nDESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to CVE-2022-35413. WAPPLES through 6.0 has a hardcoded systemi account. A threat actor could use this account to access the system configuration and confidential information (such as SSL keys) via an HTTPS request to the /webapi/ URI on port 443 or 5001.\n\nFIRST-EPSS: 0.622570000\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2024-01-15T10:01:13.000000Z"}