exploitDog

CVE-2022-45292

Опубликовано: 09 дек. 2022

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

User invites for Funkwhale v1.2.8 do not permanently expire after being used for signup and can be used again after an account has been deleted.

Ссылки

https://dev.funkwhale.audio/funkwhale/funkwhale/-/issues/1952
Exploit
Issue Tracking
Vendor Advisory
https://dev.funkwhale.audio/funkwhale/funkwhale/-/issues/1952
Exploit
Issue Tracking
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:funkwhale:funkwhale:1.2.8:*:*:*:*:*:*:*

EPSS

Процентиль: 55%

0.00319

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-672

CWE-672

Связанные уязвимости

GHSA-qxrr-wrhx-j83r

CVSS3: 5.3

github

около 3 лет назад

User invites for Funkwhale v1.2.8 do not permanently expire after being used for signup and can be used again after an account has been deleted.

EPSS

Процентиль: 55%

0.00319

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-672

CWE-672