Lucene search
JetBrainsCVELIST:CVE-2022-48477HistoryApr 24, 2023 - 12:21 p.m.
CVE-2022-48477
2023-04-2412:21:29
JetBrains
www.cve.org
jetbrains
ssrf protection
auth module
4.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N
9.6 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
54.2%
In JetBrains Hub before 2023.1.15725 SSRF protection in Auth Module integration was missing
CNA Affected
[
{
"vendor": "JetBrains",
"product": "Hub",
"versions": [
{
"version": "0",
"status": "affected",
"lessThan": "2023.1.15725",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]Related
nvd
nvd
CVE-2022-48477
2023-04-24 13:15:07
cve
cve
CVE-2022-48477
2023-04-24 13:15:07
prion
prion
Design/Logic Flaw
2023-04-24 13:15:00
4.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N
9.6 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
54.2%
Related for CVELIST:CVE-2022-48477