Lucene search
HistorySep 21, 2022 - 10:15 a.m.
CVE-2022-2872
github
file upload
security vulnerability
octoprint
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
21.6%
Unrestricted Upload of File with Dangerous Type in GitHub repository octoprint/octoprint prior to 1.8.3.
Affected configurations
Node
octoprintoctoprintRange<1.8.3
Related
veracode
veracode
Arbitrary File Upload
2022-09-26 07:39:13
huntr
huntr
Unrestricted File Upload Allowed due to Flawed Move File Functionality
2022-08-15 20:09:29
cvelist
cvelist
github
github
OctoPrint vulnerable to Unrestricted Upload of File with Dangerous Type
2022-09-22 00:00:32
osv
osv
CVE-2022-2872
2022-09-21 10:15:09
PYSEC-2022-286
2022-09-21 10:15:00
OctoPrint vulnerable to Unrestricted Upload of File with Dangerous Type
2022-09-22 00:00:32
cve
cve
CVE-2022-2872
2022-09-21 10:15:09
prion
prion
Unrestricted file upload
2022-09-21 10:15:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
21.6%
Related for NVD:CVE-2022-2872