CVE-2022-44938EPSS p57.0%
CVE-2022-44938CVE-2022-44938
seeddms / seeddms
Description
Weak reset token generation in SeedDMS v6.0.20 and v5.1.7 allows attackers to execute a full account takeover via a brute force attack.
Scoring
| CVSS | 9.8 () |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| EPSS | 0.96% probability of exploitation · percentile 57.0% · 2026-06-19T12:03:05Z |
| Last modified | 2026-06-17 |