Lucene search
HistoryAug 28, 2022 - 2:15 p.m.
CVE-2022-3017
cve-2022-3017
csrf
github
froxlor
nvd
security
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
38.1%
Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor prior to 0.10.38.
Affected configurations
Node
froxlorfroxlorRange<0.10.38
| CPE | Name | Operator | Version |
|---|---|---|---|
| froxlor:froxlor | froxlor | lt | 0.10.38 |
CNA Affected
[
{
"product": "froxlor/froxlor",
"vendor": "froxlor",
"versions": [
{
"lessThan": "0.10.38",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
nvd
nvd
CVE-2022-3017
2022-08-28 14:15:08
prion
prion
Cross site request forgery (csrf)
2022-08-28 14:15:00
veracode
veracode
Cross-Site Request Forgery (CSRF)
2022-08-29 04:27:58
osv
osv
CVE-2022-3017
2022-08-28 14:15:08
Froxlor vulnerable to Cross-Site Request Forgery (CSRF)
2022-08-29 00:00:33
huntr
huntr
CSRF on deleting an API key
2022-08-26 12:36:37
cvelist
cvelist
CVE-2022-3017 Cross-Site Request Forgery (CSRF) in froxlor/froxlor
2022-08-28 13:50:08
github
github
Froxlor vulnerable to Cross-Site Request Forgery (CSRF)
2022-08-29 00:00:33
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
38.1%
Related for CVE-2022-3017