Lucene search
GoogleOSV:PYSEC-2022-286HistorySep 21, 2022 - 10:15 a.m.
PYSEC-2022-286
2022-09-2110:15:00
Google
osv.dev
4
unrestricted upload
file upload
dangerous file types
github repository
octoprint
version 1.8.3
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
21.6%
Unrestricted Upload of File with Dangerous Type in GitHub repository octoprint/octoprint prior to 1.8.3.
Related
huntr
huntr
Unrestricted File Upload Allowed due to Flawed Move File Functionality
2022-08-15 20:09:29
nvd
nvd
CVE-2022-2872
2022-09-21 10:15:09
cvelist
cvelist
github
github
OctoPrint vulnerable to Unrestricted Upload of File with Dangerous Type
2022-09-22 00:00:32
osv
osv
CVE-2022-2872
2022-09-21 10:15:09
OctoPrint vulnerable to Unrestricted Upload of File with Dangerous Type
2022-09-22 00:00:32
veracode
veracode
Arbitrary File Upload
2022-09-26 07:39:13
cve
cve
CVE-2022-2872
2022-09-21 10:15:09
prion
prion
Unrestricted file upload
2022-09-21 10:15:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
21.6%
Related for OSV:PYSEC-2022-286