Lucene search

[email protected]NVD:CVE-2022-3205

HistorySep 13, 2022 - 8:15 p.m.

CVE-2022-3205

2022-09-1320:15:09

CWE-79

[email protected]

web.nvd.nist.gov

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

33.7%

JSON

Cross site scripting in automation controller UI in Red Hat Ansible Automation Platform 1.2 and 2.0 where the project name is susceptible to XSS injection

Affected configurations

NVD

Node

redhatansible_automation_platformMatch1.2

redhatansible_automation_platformMatch2.0

References

access.redhat.com/security/cve/CVE-2022-3205

bugzilla.redhat.com/show_bug.cgi?id=2120597

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

33.7%

JSON

Related for NVD:CVE-2022-3205

redhatcve1 cve1 prion1 cvelist1