exploitDog

GHSA-q9vj-6cqq-wmgg

Опубликовано: 10 янв. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

OpenAM Web Policy Agent (OpenAM Consortium Edition) provided by OpenAM Consortium parses URLs improperly, leading to a path traversal vulnerability(CWE-22). Furthermore, a crafted URL may be evaluated incorrectly.

OpenAM Web Policy Agent (OpenAM Consortium Edition) provided by OpenAM Consortium parses URLs improperly, leading to a path traversal vulnerability(CWE-22). Furthermore, a crafted URL may be evaluated incorrectly.

Ссылки

EPSS

Процентиль: 61%

0.00413

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2023-22320

CVSS3: 7.5

ubuntu

около 3 лет назад

OpenAM Web Policy Agent (OpenAM Consortium Edition) provided by OpenAM Consortium parses URLs improperly, leading to a path traversal vulnerability(CWE-22). Furthermore, a crafted URL may be evaluated incorrectly.

CVE-2023-22320

CVSS3: 7.5

nvd

около 3 лет назад

OpenAM Web Policy Agent (OpenAM Consortium Edition) provided by OpenAM Consortium parses URLs improperly, leading to a path traversal vulnerability(CWE-22). Furthermore, a crafted URL may be evaluated incorrectly.

EPSS

Процентиль: 61%

0.00413

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-22