Lucene search
@huntrdevCVELIST:CVE-2022-0624HistoryJun 28, 2022 - 9:10 a.m.
CVE-2022-0624 Authorization Bypass Through User-Controlled Key in ionicabizau/parse-path
2022-06-2809:10:10
CWE-639
@huntrdev
www.cve.org
3
cve-2022-0624
authorization bypass
user-controlled key
github repository
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
EPSS
0.001
Percentile
37.9%
Authorization Bypass Through User-Controlled Key in GitHub repository ionicabizau/parse-path prior to 5.0.0.
CNA Affected
[
{
"product": "ionicabizau/parse-path",
"vendor": "ionicabizau",
"versions": [
{
"lessThan": "5.0.0",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Authorization
2022-06-28 09:15:00
osv
osv
Authorization Bypass in parse-path
2022-06-29 00:00:57
CVE-2022-0624
2022-06-28 09:15:08
veracode
veracode
Authorization Bypass
2022-06-29 15:24:19
huntr
huntr
in ionicabizau/parse-path
2022-02-14 19:05:50
nvd
nvd
CVE-2022-0624
2022-06-28 09:15:08
cve
cve
CVE-2022-0624
2022-06-28 09:15:08
github
github
Authorization Bypass in parse-path
2022-06-29 00:00:57
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
EPSS
0.001
Percentile
37.9%
Related for CVELIST:CVE-2022-0624