Lucene search
Redhat.comRH:CVE-2022-40764HistoryOct 05, 2022 - 8:26 a.m.
CVE-2022-40764
2022-10-0508:26:54
redhat.com
access.redhat.com
19
flaw
snyk package
command injection
snyk-go-plugin
vulnerable
snyk cli
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
34.4%
A flaw was found in the snyk package. Affected versions of this package are vulnerable to Command Injection via the snyk-go-plugin which is used by the Snyk CLI tool.
Related
cve
cve
github
github
Snyk CLI affected by Command Injection vulnerability
2022-10-04 00:00:22
Snyk plugins vulnerable to Command Injection
2022-11-30 15:30:27
snyk Code Injection vulnerability
2023-07-06 19:24:04
nvd
nvd
prion
prion
Command injection
2022-10-03 15:15:00
Command injection
2022-11-30 13:15:00
Code injection
2022-11-30 13:15:00
osv
osv
Snyk CLI affected by Command Injection vulnerability
2022-10-04 00:00:22
CVE-2022-40764
2022-10-03 15:15:18
Snyk plugins vulnerable to Command Injection
2022-11-30 15:30:27
impervablog
impervablog
New Vulnerability in Popular Widget Shows Risks of Third-Party Code
2022-11-09 11:53:56
cvelist
cvelist
CVE-2022-40764
2022-10-03 14:03:59
CVE-2022-22984 Command Injection
2022-11-30 00:00:00
CVE-2022-24441 Code Injection
2022-11-30 00:00:00
veracode
veracode
Command Injection
2022-10-04 09:55:54
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
34.4%
Related for RH:CVE-2022-40764