Lucene search
PatchstackCVE-2024-39636HistoryAug 01, 2024 - 10:15 p.m.
CVE-2024-39636
2024-08-0122:15:25
CWE-502
Patchstack
web.nvd.nist.gov
25
codesolz
deserialization
vulnerability
better find and replace
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
8.3
Confidence
High
EPSS
0
Percentile
9.4%
Deserialization of Untrusted Data vulnerability in CodeSolz Better Find and Replace.This issue affects Better Find and Replace: from n/a through 1.6.1.
Affected configurations
Node
codesolzbetter_find_and_replaceRange≤1.6.1wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| codesolz | better_find_and_replace | * | cpe:2.3:a:codesolz:better_find_and_replace:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "real-time-auto-find-and-replace",
"product": "Better Find and Replace",
"vendor": "CodeSolz",
"versions": [
{
"changes": [
{
"at": "1.6.2",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.6.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
vulnrichment
vulnrichment
nvd
nvd
CVE-2024-39636
2024-08-01 22:15:25
wordfence
wordfence
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
8.3
Confidence
High
EPSS
0
Percentile
9.4%
Related for CVE-2024-39636