Employees of the Center for Combating Computer Incidents of the State Service for Special Communications and Information Security of Azerbaijan revealed a high-risk vulnerability that allows infiltrating its database during the audit of the global postal service.
Report learned from the department that this vulnerability was confirmed at the official level. The US National Institute of Standards and Technology (nist.gov) has assigned identification code CVE-2022-35115 to this vulnerability.
The vulnerability was notified to a global email service provider, software company IceWarp Inc., based in Prague. The company immediately responded and implemented updates that fixed the related vulnerability.