exploitDog

CVE-2022-43019

Опубликовано: 19 окт. 2022

Источник: nvd

CVSS3: 9.8

EPSS Средний

Описание

OpenCATS v0.9.6 was discovered to contain a remote code execution (RCE) vulnerability via the getDataGridPager's ajax functionality.

Ссылки

https://github.com/hansmach1ne/CVE-portfolio/tree/main/CVE-2022-43019
Exploit
Third Party Advisory
https://github.com/hansmach1ne/opencats_zero-days/blob/main/RCE_via_deserialisation.md
Exploit
Third Party Advisory
https://github.com/hansmach1ne/opencats_zero-days/blob/main/RCE_via_deserialisation.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:opencats:opencats:0.9.6:*:*:*:*:*:*:*

EPSS

Процентиль: 95%

0.16353

Средний

9.8 Critical

CVSS3

Дефекты

CWE-502

CWE-502

Связанные уязвимости

GHSA-48pw-75p2-xjhm

CVSS3: 9.8

github

больше 3 лет назад

OpenCATS v0.9.6 was discovered to contain a remote code execution (RCE) vulnerability via the getDataGridPager's ajax functionality.

EPSS

Процентиль: 95%

0.16353

Средний

9.8 Critical

CVSS3

Дефекты

CWE-502

CWE-502