Lucene search
@huntrdevCVELIST:CVE-2022-2872HistorySep 21, 2022 - 9:55 a.m.
CVE-2022-2872 Unrestricted Upload of File with Dangerous Type in octoprint/octoprint
2022-09-2109:55:08
CWE-434
@huntrdev
www.cve.org
cve-2022-2872
unrestricted upload
dangerous type
octoprint.
3.7 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
21.6%
Unrestricted Upload of File with Dangerous Type in GitHub repository octoprint/octoprint prior to 1.8.3.
CNA Affected
[
{
"product": "octoprint/octoprint",
"vendor": "octoprint",
"versions": [
{
"lessThan": "1.8.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
veracode
veracode
Arbitrary File Upload
2022-09-26 07:39:13
huntr
huntr
Unrestricted File Upload Allowed due to Flawed Move File Functionality
2022-08-15 20:09:29
nvd
nvd
CVE-2022-2872
2022-09-21 10:15:09
github
github
OctoPrint vulnerable to Unrestricted Upload of File with Dangerous Type
2022-09-22 00:00:32
osv
osv
CVE-2022-2872
2022-09-21 10:15:09
PYSEC-2022-286
2022-09-21 10:15:00
OctoPrint vulnerable to Unrestricted Upload of File with Dangerous Type
2022-09-22 00:00:32
cve
cve
CVE-2022-2872
2022-09-21 10:15:09
prion
prion
Unrestricted file upload
2022-09-21 10:15:00
3.7 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
21.6%
Related for CVELIST:CVE-2022-2872