Lucene search

[email protected]CVE-2022-29709

HistoryJul 25, 2022 - 12:15 p.m.

CVE-2022-29709

2022-07-2512:15:08

CWE-89

[email protected]

web.nvd.nist.gov

cve-2022-29709

communilink internet limited

clink office v2.0

sql injection

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.003 Low

EPSS

Percentile

69.2%

JSON

CommuniLink Internet Limited CLink Office v2.0 was discovered to contain multiple SQL injection vulnerabilities via the username and password parameters.

Affected configurations

NVD

Node

communilinkclink_officeMatch2.0

CPENameOperatorVersion
communilink:clink_officecommunilink clink officeeq2.0

CPE	Name	Operator	Version
communilink:clink_office	communilink clink office	eq	2.0

References

clink.com

communilink.com

packetstormsecurity.com/files/167240/CLink-Office-2.0-SQL-Injection.html

Social References

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.003 Low

EPSS

Percentile

69.2%

JSON

Related for CVE-2022-29709

cvelist1 nvd1 prion1