Lucene search
HistoryDec 23, 2022 - 12:15 p.m.
CVE-2022-4684
github repository
access control
usememos/memos
security issue
cve-2022-4684
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
37.0%
Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
Affected configurations
Node
usememosmemosRange<0.9.0
Related
cve
cve
CVE-2022-4684
2022-12-23 12:15:10
cvelist
cvelist
CVE-2022-4684 Improper Access Control in usememos/memos
2022-12-23 00:00:00
osv
osv
CVE-2022-4684
2022-12-23 12:15:10
usememos/memos Improper Access Control vulnerability in github.com/usememos/memos
2024-08-21 16:03:59
usememos/memos Improper Access Control vulnerability
2022-12-23 12:30:25
github
github
usememos/memos Improper Access Control vulnerability
2022-12-23 12:30:25
veracode
veracode
Improper Access Control
2022-12-27 06:52:25
prion
prion
Improper access control
2022-12-23 12:15:00
huntr
huntr
A user can edit private memos from other users
2022-12-21 00:25:44
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
37.0%
Related for NVD:CVE-2022-4684