Lucene search
TwcertCVE-2022-32958HistoryJul 20, 2022 - 2:15 a.m.
CVE-2022-32958
2022-07-2002:15:07
CWE-770
twcert
web.nvd.nist.gov
39
7
cve-2022-32958
nvd
teamplus pro
chat process
remote attacker
message size limit
CVSS3
7.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
EPSS
0.001
Percentile
51.2%
A remote attacker with general user privilege can send a message to Teamplus Pro’s chat group that exceeds message size limit, to terminate other recipients’ Teamplus Pro chat process.
Affected configurations
Node
teamplusteam\+_proRange≤3.011.6.0.1private_cloudandroid
ORteamplusteam\+_proRange≤3.011.6.0.1private_cloudiphone_os
| Vendor | Product | Version | CPE |
|---|---|---|---|
| teamplus | team\+_pro | * | cpe:2.3:a:teamplus:team\+_pro:*:*:*:*:private_cloud:android:*:* |
| teamplus | team\+_pro | * | cpe:2.3:a:teamplus:team\+_pro:*:*:*:*:private_cloud:iphone_os:*:* |
CNA Affected
[
{
"platforms": [
"Android"
],
"product": "Teamplus Pro (Private cloud)",
"vendor": "TEAMPLUS TECHNOLOGY INC.",
"versions": [
{
"lessThanOrEqual": "3.011.6.0.1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"platforms": [
"iOS"
],
"product": "Teamplus Pro (Private cloud)",
"vendor": "TEAMPLUS TECHNOLOGY INC.",
"versions": [
{
"lessThanOrEqual": "3.011.6.0.1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Social References
More
Related
prion
prion
Code injection
2022-07-20 02:15:00
nvd
nvd
CVE-2022-32958
2022-07-20 02:15:07
cvelist
cvelist
CVSS3
7.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
EPSS
0.001
Percentile
51.2%
Related for CVE-2022-32958