Lucene search
MitreCVE-2022-30981HistoryJul 17, 2022 - 11:15 p.m.
CVE-2022-30981
2022-07-1723:15:08
CWE-502
mitre
web.nvd.nist.gov
42
10
gentics cms
cve-2022-30981
java code execution
zip file
security vulnerability
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
45.7%
An issue was discovered in Gentics CMS before 5.43.1. By uploading a malicious ZIP file, an attacker is able to deserialize arbitrary data and hence can potentially achieve Java code execution.
Affected configurations
Node
genticsgentics_cmsRange<5.43.1
Social References
More
Related
prion
prion
Remote code execution
2022-07-17 23:15:00
nvd
nvd
CVE-2022-30981
2022-07-17 23:15:08
cvelist
cvelist
CVE-2022-30981
2022-07-17 22:24:51
zdt
zdt
Gentics CMS 5.36.29 Cross Site Scripting / Deserialization Vulnerability
2022-06-21 00:00:00
packetstorm
packetstorm
Gentics CMS 5.36.29 Cross Site Scripting / Deserialization
2022-06-20 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
45.7%
Related for CVE-2022-30981