Lucene search
@huntrdevCVELIST:CVE-2022-2651HistoryAug 04, 2022 - 9:10 a.m.
CVE-2022-2651 Authentication Bypass by Primary Weakness in bookwyrm-social/bookwyrm
2022-08-0409:10:10
CWE-305
@huntrdev
www.cve.org
authentication bypass
cve-2022-2651
bookwyrm-social/bookwyrm
version prior to 0.4.5
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
0.053 Low
EPSS
Percentile
93.1%
Authentication Bypass by Primary Weakness in GitHub repository bookwyrm-social/bookwyrm prior to 0.4.5.
CNA Affected
[
{
"product": "bookwyrm-social/bookwyrm",
"vendor": "bookwyrm-social",
"versions": [
{
"lessThan": "0.4.5",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
packetstorm
packetstorm
Bookwyrm 0.4.3 Authentication Bypass
2022-09-20 00:00:00
nvd
nvd
CVE-2022-2651
2022-08-04 09:15:08
osv
osv
CVE-2022-2651
2022-08-04 09:15:08
prion
prion
Authentication flaw
2022-08-04 09:15:00
huntr
huntr
Email Verification Bypass Leads To Account Takeover
2022-07-12 07:07:55
cve
cve
CVE-2022-2651
2022-08-04 09:15:08
zdt
zdt
Bookwyrm v0.4.3 - Authentication Bypass Vulnerability
2022-09-20 00:00:00
exploitdb
exploitdb
Bookwyrm v0.4.3 - Authentication Bypass
2022-09-20 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
0.053 Low
EPSS
Percentile
93.1%
Related for CVELIST:CVE-2022-2651