Lucene search

K
cve[email protected]CVE-2022-34558
HistoryJul 28, 2022 - 11:15 p.m.

CVE-2022-34558

2022-07-2823:15:07
web.nvd.nist.gov
54
4
cve
wmagent
reqmgr
code execution
security vulnerability

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.6%

WMAgent v1.3.3rc2 and 1.3.3rc1, reqmgr 2 1.4.1rc5 and 1.4.0rc2, reqmon 1.4.1rc5, and global-workqueue 1.4.1rc5 allows attackers to execute arbitrary code via a crafted dbs-client package.

Affected configurations

NVD
Node
global-workqueue_projectglobal-workqueueMatch1.4.1rc5python
OR
reqmgr2_projectreqmgr2Match1.4.0rc2python
OR
reqmgr2_projectreqmgr2Match1.4.1rc5python
OR
reqmon_projectreqmonMatch1.4.1rc5python
OR
wmagent_projectwmagentMatch1.3.3rc1python
OR
wmagent_projectwmagentMatch1.3.3rc2python

Social References

More

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.6%

Related for CVE-2022-34558