Lucene search

[email protected]NVD:CVE-2022-48481

HistoryApr 28, 2023 - 10:15 a.m.

CVE-2022-48481

2023-04-2810:15:09

CWE-691

[email protected]

web.nvd.nist.gov

jetbrains toolbox app

dylib injection

macos

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

In JetBrains Toolbox App before 1.28 a DYLIB injection on macOS was possible

Affected configurations

NVD

Node

applemacosMatch-

AND

jetbrainstoolboxRange<1.28

References

www.jetbrains.com/privacy-security/issues-fixed/

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2022-48481

prion1 cve1 cvelist1