CVE-2022-29303 - SolarView Compact Command Injection Vulnerability

Vulnerability Name

SolarView Compact Command Injection Vulnerability

Description

SolarView Compact contains a command injection vulnerability due to improper validation of input values on the send test mail console of the product's web server.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.

Additional Notes

https://jvn.jp/en/vu/JVNVU92327282/

https://nvd.nist.gov/vuln/detail/CVE-2022-29303