CVE-2022-43713

HIGH

GX Software XperienCentral <10.35.0 - Info Disclosure

Title source: llm

Description

Interactive Forms (IAF) in GX Software XperienCentral versions 10.33.1 until 10.35.0 was vulnerable to invalid data input because form validation could be bypassed.

References (2)

[Product] https://service.gxsoftware.com

[Vendor Advisory] https://service.gxsoftware.com/hc/nl/articles/12208173122461

Scores

CVSS v3 7.5

EPSS 0.0005

EPSS Percentile 15.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-20 CWE-116

Status published

Products (1)

gxsoftware/xperiencentral 10.33.1 - 10.35.0

Published Jul 26, 2023

Tracked Since Feb 18, 2026