Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2022-23650
HistoryFeb 18, 2022 - 10:15 p.m.

CVE-2022-23650

2022-02-1822:15:13
Google
osv.dev
5
netmaker
cryptographic key
vulnerability
wireguard
admin commands
remote server
patch
software

AI Score

9

Confidence

High

EPSS

0.001

Percentile

46.2%

JSON

Netmaker is a platform for creating and managing virtual overlay networks using WireGuard. Prior to versions 0.8.5, 0.9.4, and 010.0, there is a hard-coded cryptographic key in the code base which can be exploited to run admin commands on a remote server if the exploiter know the address and username of the admin. This effects the server (netmaker) component, and not clients. This has been patched in Netmaker v0.8.5, v0.9.4, and v0.10.0. There are currently no known workarounds.

Related

prion 1
cvelist 1
osv 2
cve 1
cnvd 1
veracode 1
github 1
nvd 1
prion
prion
Hardcoded credentials
2022-02-18 22:15:00
cvelist
cvelist
CVE-2022-23650 Use of Hard-coded Cryptographic Key in Netmaker
2022-02-18 22:00:12
osv
osv
Use of Hard-coded Cryptographic Key in Netmaker in github.com/gravitl/netmaker
2024-08-21 14:30:29
Use of Hard-coded Cryptographic Key in Netmaker
2022-02-22 19:40:23
cve
cve
CVE-2022-23650
2022-02-18 22:15:13
cnvd
cnvd
Gravitl Netmaker has an unspecified vulnerability
2022-02-22 00:00:00
veracode
veracode
Weak Cryptography
2022-02-23 06:11:34
github
github
Use of Hard-coded Cryptographic Key in Netmaker
2022-02-22 19:40:23
nvd
nvd
CVE-2022-23650
2022-02-18 22:15:13

AI Score

9

Confidence

High

EPSS

0.001

Percentile

46.2%

JSON
Related for OSV:CVE-2022-23650
prion1cvelist1osv2cve1cnvd1veracode1github1nvd1