Lucene search
ApacheCVELIST:CVE-2022-22733HistoryJan 20, 2022 - 10:25 a.m.
CVE-2022-22733 Access-Token in ElasticJob UI causes password disclosure
2022-01-2010:25:12
CWE-200
apache
www.cve.org
4
access-token
elasticjob-ui
sensitive information
unauthorized actor
apache shardingsphere
privilege escalation
cve-2022-22733
EPSS
0.214
Percentile
96.5%
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache ShardingSphere ElasticJob-UI allows an attacker who has guest account to do privilege escalation. This issue affects Apache ShardingSphere ElasticJob-UI Apache ShardingSphere ElasticJob-UI 3.x version 3.0.0 and prior versions.
CNA Affected
[
{
"product": "Apache ShardingSphere ElasticJob-UI",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThanOrEqual": "3.0.0",
"status": "affected",
"version": "Apache ShardingSphere ElasticJob-UI 3.x",
"versionType": "custom"
}
]
}
]Related
nuclei
nuclei
Apache ShardingSphere ElasticJob-UI privilege escalation
2023-05-11 02:57:33
prion
prion
Privilege escalation
2022-01-20 11:15:00
nvd
nvd
CVE-2022-22733
2022-01-20 11:15:08
cnvd
cnvd
Apache ShardingSphere Information Disclosure Vulnerability
2022-01-23 00:00:00
osv
osv
CVE-2022-22733
2022-01-20 11:15:08
githubexploit
githubexploit
cve
cve
CVE-2022-22733
2022-01-20 11:15:08