Lucene search
China National Vulnerability DatabaseCNVD-2022-54913HistoryJul 15, 2022 - 12:00 a.m.
October CMS Competition Conditions Issue Vulnerability
2022-07-1500:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
0.004 Low
EPSS
Percentile
73.8%
October CMS is an open source content management system (CMS) based on PHP and the Laravel web application framework. October CMS is vulnerable to a contention condition issue. The vulnerability stems from improper handling of concurrent access when concurrent code needs to access shared resources mutually exclusive during the operation of a networked system or product. An attacker could exploit the vulnerability to execute remote code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| October CMS October CMS | lt | 1.0.476 | |
| October CMS October CMS >=2.0.0, | lt | 2.2.15 | |
| October CMS October CMS >=1.1.0, | lt | 1.1.12 |
Related
cve
cve
CVE-2022-24800
2022-07-12 20:15:07
nvd
nvd
CVE-2022-24800
2022-07-12 20:15:07
osv
osv
CVE-2022-24800
2022-07-12 20:15:07
October CMS upload process vulnerable to RCE via Race Condition
2022-07-13 21:42:45
prion
prion
Race condition
2022-07-12 20:15:00
cvelist
cvelist
CVE-2022-24800 Race Condition in October CMS upload process
2022-07-12 20:05:10
github
github
October CMS upload process vulnerable to RCE via Race Condition
2022-07-13 21:42:45