exploitDog

CVE-2022-42983

Опубликовано: 17 окт. 2022

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

anji-plus AJ-Report 0.9.8.6 allows remote attackers to bypass login authentication by spoofing JWT Tokens.

Ссылки

https://gitee.com/anji-plus/report/issues/I5VVZ0
Exploit
Third Party Advisory
https://github.com/anji-plus/report/issues/7
Exploit
Third Party Advisory
https://gitee.com/anji-plus/report/issues/I5VVZ0
Exploit
Third Party Advisory
https://github.com/anji-plus/report/issues/7
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:anji-plus:aj-report:0.9.8.6:*:*:*:*:*:*:*

EPSS

Процентиль: 63%

0.00438

Низкий

8.8 High

CVSS3

Дефекты

CWE-290

CWE-290

Связанные уязвимости

GHSA-m9p4-5j4f-2r9g

CVSS3: 8.8

github

больше 3 лет назад

anji-plus AJ-Report 0.9.8.6 allows remote attackers to bypass login authentication by spoofing JWT Tokens.

EPSS

Процентиль: 63%

0.00438

Низкий

8.8 High

CVSS3

Дефекты

CWE-290

CWE-290