exploitDog

CVE-2022-47876

Опубликовано: 02 мая 2023

Источник: nvd

CVSS3: 8.8

CVSS3: 9.1

EPSS Низкий

Описание

The integrator in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to create Jobs to execute arbitrary code via Groovy-scripts.

Ссылки

http://packetstormsecurity.com/files/172155/Jedox-2020.2.5-Groovy-Scripts-Remote-Code-Execution.html
Exploit
Third Party Advisory
VDB Entry
https://docs.syslifters.com/assets/vulnerability-disclosure/Vulnerability-Disclosure-Jedox-Jedox-04-2023.pdf
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/172155/Jedox-2020.2.5-Groovy-Scripts-Remote-Code-Execution.html
Exploit
Third Party Advisory
VDB Entry
https://docs.syslifters.com/assets/vulnerability-disclosure/Vulnerability-Disclosure-Jedox-Jedox-04-2023.pdf
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:jedox:jedox:2020.2.5:*:*:*:*:*:*:*

EPSS

Процентиль: 88%

0.03994

Низкий

8.8 High

CVSS3

9.1 Critical

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-hrwc-fr4r-gqr4

CVSS3: 8.8

github

почти 3 года назад

The integrator in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to create Jobs to execute arbitrary code via Groovy-scripts.

EPSS

Процентиль: 88%

0.03994

Низкий

8.8 High

CVSS3

9.1 Critical

CVSS3

Дефекты

NVD-CWE-noinfo