Lucene search
GitHub Advisory DatabaseGHSA-VH4M-MW8W-G4W8HistorySep 07, 2022 - 12:01 a.m.
RosarioSIS before 10.1 vulnerable to Improper Handling of Length Parameter Inconsistency
2022-09-0700:01:54
CWE-130
GitHub Advisory Database
github.com
12
rosariosis
version 10.1
improper handling
length parameter
inconsistency
software
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
60.5%
RosarioSIS Student Information System prior to version 10.1 is vulnerable to Improper Handling of Length Parameter Inconsistency.
Affected configurations
Node
francoisjacquetrosariosisRange<10.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| francoisjacquet | rosariosis | * | cpe:2.3:a:francoisjacquet:rosariosis:*:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2022-2714
2022-09-06 11:15:08
osv
osv
RosarioSIS before 10.1 vulnerable to Improper Handling of Length Parameter Inconsistency
2022-09-07 00:01:54
CVE-2022-2714
2022-09-06 11:15:08
cvelist
cvelist
veracode
veracode
Buffer Overflows
2022-09-07 04:35:10
prion
prion
Input validation
2022-09-06 11:15:00
nvd
nvd
CVE-2022-2714
2022-09-06 11:15:08
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
60.5%
Related for GHSA-VH4M-MW8W-G4W8