Lucene search
MitreCVE-2022-46640HistoryApr 18, 2023 - 1:15 p.m.
CVE-2022-46640
2023-04-1813:15:09
CWE-77
mitre
web.nvd.nist.gov
37
2
nanoleaf
desktop app
v1.3.1
command injection
vulnerability
cve-2022-46640
nvd
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.004
Percentile
72.5%
Nanoleaf Desktop App before v1.3.1 was discovered to contain a command injection vulnerability which is exploited via a crafted HTTP request.
Affected configurations
Node
nanoleafnanoleaf_desktopRange<1.3.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| nanoleaf | nanoleaf_desktop | * | cpe:2.3:a:nanoleaf:nanoleaf_desktop:*:*:*:*:*:*:*:* |
References
Social References
More
Related
cvelist
cvelist
CVE-2022-46640
2023-04-18 00:00:00
nvd
nvd
CVE-2022-46640
2023-04-18 13:15:09
prion
prion
Command injection
2023-04-18 13:15:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.004
Percentile
72.5%
Related for CVE-2022-46640