Lucene search

K
cve[email protected]CVE-2022-24952
HistoryAug 16, 2022 - 1:15 a.m.

CVE-2022-24952

2022-08-1601:15:12
CWE-20
web.nvd.nist.gov
45
4
cve-2022-24952
dos
denial of service
eternal terminal
security vulnerability

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.9%

Several denial of service vulnerabilities exist in Eternal Terminal prior to version 6.2.0, including a DoS triggered remotely by an invalid sequence number and a local bug triggered by invalid input sent directly to the IPC socket.

Affected configurations

NVD
Node
eternal_terminal_projecteternal_terminalRange<6.2.0

CNA Affected

[
  {
    "vendor": "Jason Gauci",
    "product": "Eternal Terminal",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "6.2.0",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

Social References

More

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.9%

Related for CVE-2022-24952