Lucene search
MitreCVE-2022-45297HistoryJan 31, 2023 - 10:15 p.m.
CVE-2022-45297
2023-01-3122:15:08
CWE-89
mitre
web.nvd.nist.gov
37
cve-2022-45297
nvd
sql injection
userpwd parameter
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
66.4%
EQ v1.5.31 to v2.2.0 was discovered to contain a SQL injection vulnerability via the UserPwd parameter.
Affected configurations
Node
eq_projecteqRange1.5.31–2.2.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| eq_project | eq | * | cpe:2.3:a:eq_project:eq:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2022-45297
2023-01-31 22:15:08
exploitdb
exploitdb
EQ Enterprise management system v2.2.0 - SQL Injection
2023-03-31 00:00:00
packetstorm
packetstorm
EQ Enterprise Management System 2.2.0 SQL Injection
2023-03-31 00:00:00
prion
prion
Sql injection
2023-01-31 22:15:00
cvelist
cvelist
CVE-2022-45297
2023-01-31 00:00:00
zdt
zdt
EQ Enterprise management system v2.2.0 - SQL Injection Vulnerability
2023-03-31 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
66.4%
Related for CVE-2022-45297