O2OA v6.4.7 was discovered to contain a remote code execution (RCE) vulnerability via /xprogramcenter/jaxrs/invoke.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/22xxx/CVE-2022-22916.json",
"cna_assigner": "mitre"
}