Lucene search
MitreCVE-2022-30025HistoryMay 24, 2023 - 9:15 p.m.
CVE-2022-30025
2023-05-2421:15:10
CWE-89
mitre
web.nvd.nist.gov
22
cve-2022-30025
sql injection
framewrk
home.jsp
tcredence analytics
ideal wealth and funds
nvd
security vulnerability
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
36.3%
SQL injection in “/Framewrk/Home.jsp” file (POST method) in tCredence Analytics iDEAL Wealth and Funds - 1.0 iallows authenticated remote attackers to inject payload via “v” parameter.
Affected configurations
Node
credenceanalyticsideal_-_wealth_and_fundsMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| credenceanalytics | ideal_-_wealth_and_funds | 1.0 | cpe:2.3:a:credenceanalytics:ideal_-_wealth_and_funds:1.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2022-30025
2023-05-24 00:00:00
nvd
nvd
CVE-2022-30025
2023-05-24 21:15:10
prion
prion
Sql injection
2023-05-24 21:15:00
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
36.3%
Related for CVE-2022-30025