Lucene search

Improper Removal of Sensitive Information Before Storage or Transfer in Strapi

🗓️ 20 May 2022 00:28:00Reported by GitHub Advisory DatabaseType

Improper Sensitive Data Access in Strapi Admin Pane

Reporter	Title	Published	Views	Family All 7
NVD	CVE-2022-30617	19 May 202218:15	–	nvd
Prion	Design/Logic Flaw	19 May 202218:15	–	prion
Cvelist	CVE-2022-30617	19 May 202217:07	–	cvelist
CVE	CVE-2022-30617	19 May 202218:15	–	cve
OSV	Improper Removal of Sensitive Information Before Storage or Transfer in Strapi	20 May 202200:00	–	osv
OSV	CVE-2022-30617	19 May 202218:15	–	osv
Veracode	Information Disclosure	20 May 202206:19	–	veracode

Vulners

Node

strapi strapiRange≤4.0.0-beta.14

strapi strapiRange3.0.0–3.6.9

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-30617
synopsys	www.synopsys.com/blogs/software-security/cyrc-advisory-strapi
github	www.github.com/advisories/GHSA-f6fm-r26q-p747

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 May 2022 00:00Current

8.3High risk

Vulners AI Score8.3

CVSS29

CVSS38.8

EPSS0.00253

CWE-212