exploitDog

CVE-2022-29617

Опубликовано: 06 июн. 2022

Источник: nvd

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

Due to improper error handling an authenticated user can crash CLA assistant instance. This could impact the availability of the application.

Ссылки

https://github.com/cla-assistant/cla-assistant/security/advisories/GHSA-jjjv-grgr-v8h3
Third Party Advisory
https://github.com/cla-assistant/cla-assistant/security/advisories/GHSA-jjjv-grgr-v8h3
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sap:contributor_license_agreement_assistant:*:*:*:*:*:*:*:*

Версия до 2.13.0 (исключая)

EPSS

Процентиль: 52%

0.00287

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-755

CWE-755

EPSS

Процентиль: 52%

0.00287

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-755

CWE-755