Lucene search
PatchstackCVE-2022-40975HistoryApr 26, 2024 - 2:15 p.m.
CVE-2022-40975
2024-04-2614:15:07
CWE-862
Patchstack
web.nvd.nist.gov
35
cve-2022-40975
reserved
security advisory
nvd
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Missing Authorization vulnerability in Aazztech Post Slider.This issue affects Post Slider: from n/a through 1.6.7.
Affected configurations
Node
aazztechwoocommerce_product_carousel_sliderRange≤1.6.7wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| aazztech | woocommerce_product_carousel_slider | * | cpe:2.3:a:aazztech:woocommerce_product_carousel_slider:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "adl-post-slider",
"product": "Post Slider",
"vendor": "Aazztech",
"versions": [
{
"lessThanOrEqual": "1.6.7",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
CVE-2022-40975
2024-04-26 14:15:07
vulnrichment
vulnrichment
patchstack
patchstack
WordPress Post Slider plugin <= 1.6.7 - Broken Access Control vulnerability
2022-10-06 00:00:00
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2022-40975