Lucene search

Perfsonar Security Vulnerabilities

cve

CVE-2022-45213

perfSONAR before 4.4.6 inadvertently supports the parse option for a file://...

5.3CVSS

5.4AI Score

0.001EPSS

2023-01-01 08:15 AM

cve

CVE-2022-45027

perfSONAR before 4.4.6, when performing participant discovery, incorrectly uses an HTTP request header value to determine a local...

5.3CVSS

5.2AI Score

0.001EPSS

2023-01-01 08:15 AM

cve

CVE-2022-41413

perfSONAR v4.x <= v4.4.5 was discovered to contain a Cross-Site Request Forgery (CSRF) which is triggered when an attacker injects crafted input into the Search...

4.3CVSS

4.7AI Score

0.001EPSS

2022-11-30 05:15 AM

cve

CVE-2022-41412

An issue in the graphData.cgi component of perfSONAR v4.4.5 and prior allows attackers to access sensitive data and execute Server-Side Request Forgery (SSRF)...

8.6CVSS

8.7AI Score

0.022EPSS

2022-11-30 05:15 AM