Lucene search
MitreCVE-2022-42949HistoryDec 21, 2022 - 12:15 a.m.
CVE-2022-42949
2022-12-2100:15:10
CWE-732
mitre
web.nvd.nist.gov
101
cve-2022-42949
silverstripe
subsites
2.6.0
insecure permissions
nvd
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
34.5%
Silverstripe silverstripe/subsites through 2.6.0 has Insecure Permissions.
Affected configurations
Node
silverstripesubsitesRange≤2.6.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| silverstripe | subsites | * | cpe:2.3:a:silverstripe:subsites:*:*:*:*:*:*:*:* |
Related
veracode
veracode
Privilege Escalation
2022-12-20 08:46:46
prion
prion
Design/Logic Flaw
2022-12-21 00:15:00
friendsofphp
friendsofphp
CVE-2022-42949 - Subsite weakens file permissions
2022-12-18 22:37:00
osv
osv
SilverStripe Subsite weakens file permissions
2022-12-19 18:19:11
CVE-2022-42949
2022-12-21 00:15:10
cvelist
cvelist
CVE-2022-42949
2022-12-20 00:00:00
nvd
nvd
CVE-2022-42949
2022-12-21 00:15:10
github
github
SilverStripe Subsite weakens file permissions
2022-12-19 18:19:11
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
34.5%
Related for CVE-2022-42949