CVE-2022-50925 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Prowise Reflect version 1.0.9 contains a remote keystroke injection vulnerability that allows attackers to send keyboard events through an exposed WebSocket on…
High CVSS: 8.6

CVE-2022-50925

Prowise Reflect version 1.0.9 contains a remote keystroke injection vulnerability that allows attackers to send keyboard events through an exposed WebSocket on port 8082. Attackers can craft malicious web pages to inject keystrokes, opening applications and typing arbitrary text by sending specific WebSocket messages.
Vendor
Prowise
Product
Reflect
CWE
CWE-346
Yayın Tarihi
2026-01-13 23:15:56
Güncelleme
2026-01-30 14:00:00
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-346 Reflect HIGH Prowise 2026

Referanslar

https://www.exploit-db.com/exploits/50796 https://www.prowise.com/ https://www.vulncheck.com/advisories/prowise-reflect-remote-keystroke-injection https://www.exploit-db.com/exploits/50796