cvedb.io
CVE-2022-45895
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2022-12-25T05:15:11.360 · Last modified 2026-06-17T05:10:57.340

Summary

Planet eStream before 6.72.10.07 discloses sensitive information, related to the ON cookie (findable in HTML source code for Default.aspx in some situations) and the WhoAmI endpoint (e.g., path disclosure).

Affected products

planetestream — planet_estream

Does this affect you?

Add your gear to cvedb and we'll alert you only when planetestream ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.