exploitDog

CVE-2022-37458

Опубликовано: 02 сент. 2022

Источник: nvd

CVSS3: 7.2

EPSS Низкий

Описание

Discourse through 2.8.7 allows admins to send invitations to arbitrary email addresses at an unlimited rate.

Ссылки

https://github.com/discourse/discourse/security/advisories/GHSA-q2rg-m477-8wg7
Third Party Advisory
https://github.com/discourse/discourse/tags
Release Notes
Third Party Advisory
https://www.enisa.europa.eu/topics/threat-risk-management/vulnerability-disclosure
Third Party Advisory
https://github.com/discourse/discourse/security/advisories/GHSA-q2rg-m477-8wg7
Third Party Advisory
https://github.com/discourse/discourse/tags
Release Notes
Third Party Advisory
https://www.enisa.europa.eu/topics/threat-risk-management/vulnerability-disclosure
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:discourse:discourse:*:*:*:*:*:*:*:*

Версия до 2.8.7 (включая)

EPSS

Процентиль: 69%

0.00615

Низкий

7.2 High

CVSS3

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-9gxg-c82c-36q9

CVSS3: 7.2

github

больше 3 лет назад

Discourse through 2.8.7 allows admins to send invitations to arbitrary email addresses at an unlimited rate.

EPSS

Процентиль: 69%

0.00615

Низкий

7.2 High

CVSS3

Дефекты

NVD-CWE-Other