Lucene search

MitreCVE-2022-40337

HistorySep 16, 2022 - 4:15 p.m.

CVE-2022-40337

2022-09-1616:15:10

mitre

web.nvd.nist.gov

oases

open aviation

8.8.0.2

arbitrary code execution

vulnerability

cve-2022-40337

nvd

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.9

Confidence

High

EPSS

0.003

Percentile

68.0%

JSON

OASES (aka Open Aviation Strategic Engineering System) 8.8.0.2 allows attackers to execute arbitrary code via the Open Print Folder menu.

Affected configurations

Nvd

Node

aspiresoftwareopen_aviation_strategic_engineering_systemMatch8.8.0.2

VendorProductVersionCPE
aspiresoftwareopen_aviation_strategic_engineering_system8.8.0.2cpe:2.3:a:aspiresoftware:open_aviation_strategic_engineering_system:8.8.0.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
aspiresoftware	open_aviation_strategic_engineering_system	8.8.0.2	cpe:2.3:a:aspiresoftware:open_aviation_strategic_engineering_system:8.8.0.2:::::::*

References

gist.github.com/Delson704557/df06fcee0b2676d611aef799e1c4a0e6

oases.aero/

www.aspiresoftware.com/companies/oases/

Social References

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.9

Confidence

High

EPSS

0.003

Percentile

68.0%

JSON

Related for CVE-2022-40337