CVE-2022-4665

Опубликовано: 23 дек. 2022

Источник: nvd

CVSS3: 3.1

CVSS3: 8.8

EPSS Низкий

Описание

Unrestricted Upload of File with Dangerous Type in GitHub repository ampache/ampache prior to 5.5.6.

Ссылки

https://github.com/ampache/ampache/commit/8293fa86e5f50a168b7f5c892ffbd6aa555134bd
Patch
Third Party Advisory
https://huntr.dev/bounties/5e7f3ecc-3b08-4e0e-8bf8-ae7ae229941f
Exploit
Issue Tracking
Patch
Third Party Advisory
https://github.com/ampache/ampache/commit/8293fa86e5f50a168b7f5c892ffbd6aa555134bd
Patch
Third Party Advisory
https://huntr.dev/bounties/5e7f3ecc-3b08-4e0e-8bf8-ae7ae229941f
Exploit
Issue Tracking
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ampache:ampache:*:*:*:*:*:*:*:*

Версия до 5.5.6 (исключая)

EPSS

Процентиль: 47%

0.00243

Низкий

3.1 Low

CVSS3

8.8 High

CVSS3

Дефекты

CWE-434

Связанные уязвимости

CVE-2022-4665

CVSS3: 8.8

ubuntu

около 3 лет назад

Unrestricted Upload of File with Dangerous Type in GitHub repository ampache/ampache prior to 5.5.6.

CVE-2022-4665

CVSS3: 8.8

debian

около 3 лет назад

Unrestricted Upload of File with Dangerous Type in GitHub repository a ...

GHSA-w47p-6xf6-x3pf

CVSS3: 8.8

github

около 3 лет назад

Unrestricted Upload of File with Dangerous Type in GitHub repository ampache/ampache prior to 5.5.6.

EPSS

Процентиль: 47%

0.00243

Низкий

3.1 Low

CVSS3

8.8 High

CVSS3

Дефекты

CWE-434