exploitDog

CVE-2022-4366

Опубликовано: 08 дек. 2022

Источник: nvd

CVSS3: 5.3

CVSS3: 7.5

EPSS Низкий

Описание

Missing Authorization in GitHub repository lirantal/daloradius prior to master branch.

Ссылки

https://github.com/lirantal/daloradius/commit/3d11f375a76ddb3741200296e15f81d82dfb80ce
Patch
Third Party Advisory
https://huntr.dev/bounties/f225d69a-d971-410d-a8f9-b0026143aed8
Exploit
Patch
Third Party Advisory
https://github.com/lirantal/daloradius/commit/3d11f375a76ddb3741200296e15f81d82dfb80ce
Patch
Third Party Advisory
https://huntr.dev/bounties/f225d69a-d971-410d-a8f9-b0026143aed8
Exploit
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:daloradius:daloradius:-:*:*:*:*:*:*:*

EPSS

Процентиль: 49%

0.00263

Низкий

5.3 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-862

CWE-862

Связанные уязвимости

GHSA-4gv4-7phc-2jw7

CVSS3: 7.5

github

около 3 лет назад

Exposure of Sensitive System Information to an Unauthorized Control Sphere in GitHub repository lirantal/daloradius prior to master branch.

EPSS

Процентиль: 49%

0.00263

Низкий

5.3 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-862

CWE-862