CVE-2022-1766

🗓️ 20 Jul 2022 16:10:10Reported by certccType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 2260 Views

Anchore Enterprise anchorectl version 0.1.4 stores credentials in SBO

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2022-1766	29 Apr 202200:00	–	attackerkb
Circl	CVE-2022-1766	20 Jul 202220:12	–	circl
CNNVD	Anchor 安全漏洞	20 Jul 202200:00	–	cnnvd
Cvelist	CVE-2022-1766	20 Jul 202216:10	–	cvelist
EUVD	EUVD-2022-25047	3 Oct 202520:07	–	euvd
NVD	CVE-2022-1766	20 Jul 202216:15	–	nvd
OSV	CVE-2022-1766	20 Jul 202216:15	–	osv
Prion	Design/Logic Flaw	20 Jul 202216:15	–	prion

NVD

Node

anchore anchoreRange<4.0.1enterprise

anchore anchorectlRange<0.1.5

[
  {
    "product": "Anchore Enterprise",
    "vendor": "Anchore Inc.",
    "versions": [
      {
        "lessThan": "4.0.1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "AnchoreCTL",
    "vendor": "Anchore Inc.",
    "versions": [
      {
        "lessThan": "0.1.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
docs	www.docs.anchore.com/current/docs/releasenotes/401/

21 Nov 2024 06:41Current

7.4High risk

Vulners AI Score7.4

CVSS 3.17.5

EPSS0.00276

CWE-522