CVE-2022-47874

MEDIUM

Jedox Cloud 2020.2.5 - Authenticated Database Credential Disclosure via /tc/rpc Connections Endpoint

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-47874. PoCs published by Team Syslifters.

AI-analyzed exploit summary This exploit demonstrates an improper access control vulnerability in Jedox 2020.2.5, allowing authenticated users to disclose database credentials via the `/tc/rpc` endpoint by leveraging the `com.jedox.etl.mngr.Connections::getGlobalConnection` method. The PoC includes steps to list available connections and retrieve encrypted credentials.

Description

Improper Access Control in /tc/rpc in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to view details of database connections via class 'com.jedox.etl.mngr.Connections' and method 'getGlobalConnection'.

Exploits (1)

exploitdb WORKING POC
by Team Syslifters · textwebappsphp
https://www.exploit-db.com/exploits/51428

This exploit demonstrates an improper access control vulnerability in Jedox 2020.2.5, allowing authenticated users to disclose database credentials via the `/tc/rpc` endpoint by leveraging the `com.jedox.etl.mngr.Connections::getGlobalConnection` method. The PoC includes steps to list available connections and retrieve encrypted credentials.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Jedox 2020.2 (20.2.5) and older
Auth required
Prerequisites: authenticated access to the target system · knowledge of the database connection name
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 6.5
EPSS 0.2272
EPSS Percentile 97.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-863
Status published
Products (2)
jedox/cloud
jedox/jedox 2020.2.5
Published May 02, 2023
Tracked Since Feb 18, 2026