Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistRedhatCVELIST:CVE-2022-1414
HistoryOct 19, 2022 - 12:00 a.m.

CVE-2022-1414

2022-10-1900:00:00
CWE-1173
redhat
www.cve.org
3
3scale
api management
input sanitization
script injection
unauthorized access
cve-2022-1414

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

38.2%

JSON

3scale API Management 2 does not perform adequate sanitation for user input in multiple fields. An authenticated user could use this flaw to inject scripts and possibly gain access to sensitive information or conduct further attacks.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "3scale-amp-system",
    "versions": [
      {
        "version": "3scale-amp-system as shipped in 3scale-AMP 2",
        "status": "affected"
      }
    ]
  }
]

Related

prion 1
redhatcve 1
nvd 1
cve 1
prion
prion
Design/Logic Flaw
2022-10-19 18:15:00
redhatcve
redhatcve
CVE-2022-1414
2022-04-20 12:59:17
nvd
nvd
CVE-2022-1414
2022-10-19 18:15:11
cve
cve
CVE-2022-1414
2022-10-19 18:15:11

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

38.2%

JSON
Related for CVELIST:CVE-2022-1414
prion1redhatcve1nvd1cve1