Lucene search
K

114 matches found

CVE
CVE
added 2023/02/16 8:0 p.m.52 views

CVE-2022-27234

The connected documents confirm CVE-2022-27234 affects the Intel CVAT software prior to version 2.0.1, where an authenticated user can trigger server-side request forgery to disclose information via network access. Root cause centers on SSRF in CVAT’s handling of network requests. Affected produc...

6.5CVSS6.2AI score0.00453EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/16 8:0 p.m.7 views

CVE-2022-27234

Server-side request forgery in the CVAT software maintained by IntelR before version 2.0.1 may allow an authenticated user to potentially enable information disclosure via network access...

4.3CVSS6.3AI score0.00453EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/02/16 12:0 a.m.5 views

PT-2023-12900 · Cvat · Cvat

Name of the Vulnerable Software and Affected Versions: CVAT versions prior to 2.0.1 Description: The issue allows an authenticated user to potentially enable information disclosure via network access due to server-side request forgery. Recommendations: For versions prior to 2.0.1, update to versi...

6.5CVSS6.2AI score0.00453EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/02/16 12:0 a.m.3 views

Intel CVAT 代码问题漏洞

CVAT is an interactive video and image annotation tool for computer vision. A security vulnerability exists in IntelR CVAT prior to version 2.0.1, which can be exploited by an attacker to disclose information via network access hidden enablement...

6.5CVSS6.4AI score0.00453EPSS
Exploits0References2
0day.today
0day.today
added 2022/11/11 12:0 a.m.298 views

CVAT 2.0 - Server Side Request Forgery Vulnerability

Exploit Title: CVAT 2.0 - SSRF Server Side Request Forgery Exploit Author: Emir Polat Vendor Homepage: https://github.com/opencv/cvat Version: 2.0.0 Tested On: Version 1.7.0 - Ubuntu 20.04.4 LTS GNU/Linux 5.4.0-122-generic x8664 CVE: CVE-2022-31188 Description: CVAT is an opensource interactive...

9.8CVSS0.5AI score0.47846EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/11/11 12:0 a.m.299 views

CVAT 2.0 Server-Side Request Forgery

Exploit Title: CVAT 2.0 - SSRF Server Side Request Forgery Exploit Author: Emir Polat Vendor Homepage: https://github.com/opencv/cvat Version: 2.0.0 Tested On: Version 1.7.0 - Ubuntu 20.04.4 LTS GNU/Linux 5.4.0-122-generic x8664 CVE: CVE-2022-31188 Description: CVAT is an opensource interactive...

9.8CVSS0.8AI score0.47846EPSS
Exploits4
Exploit DB
Exploit DB
added 2022/11/11 12:0 a.m.95 views

CVAT 2.0 - Server Side Request Forgery

Exploit Title: CVAT 2.0 - SSRF Server Side Request Forgery Exploit Author: Emir Polat Vendor Homepage: https://github.com/opencv/cvat Version: 2.0.0 Tested On: Version 1.7.0 - Ubuntu 20.04.4 LTS GNU/Linux 5.4.0-122-generic x8664 CVE: CVE-2022-31188 Description: CVAT is an opensource interactive...

9.8CVSS9.7AI score0.47846EPSS
Exploits4
NVD
NVD
added 2022/08/01 8:15 p.m.45 views

CVE-2022-31188

CVAT is an opensource interactive video and image annotation tool for computer vision. Versions prior to 2.0.0 were found to be subject to a Server-side request forgery SSRF vulnerability. Validation has been added to urls used in the affected code path in version 2.0.0. Users are advised to...

9.8CVSS0.47846EPSS
Exploits4References3
Prion
Prion
added 2022/08/01 8:15 p.m.14 views

Server side request forgery (ssrf)

CVAT is an opensource interactive video and image annotation tool for computer vision. Versions prior to 2.0.0 were found to be subject to a Server-side request forgery SSRF vulnerability. Validation has been added to urls used in the affected code path in version 2.0.0. Users are advised to...

7.5CVSS9.6AI score0.47846EPSS
Exploits4References3Affected Software1
CNNVD
CNNVD
added 2022/08/01 12:0 a.m.4 views

CVAT 代码问题漏洞

CVAT is an interactive video and image annotation tool for computer vision. A code issue vulnerability exists in versions of CVAT prior to 2.0.0, which stems from a url used in a code path without added validation...

9.8CVSS8.3AI score0.47846EPSS
Exploits4References6
Cvelist
Cvelist
added 2022/08/01 12:0 a.m.48 views

CVE-2022-31188 Server-Side Request Forgery Vulnerability in Computer Vision Annotation Tool (CVAT)

CVAT is an opensource interactive video and image annotation tool for computer vision. Versions prior to 2.0.0 were found to be subject to a Server-side request forgery SSRF vulnerability. Validation has been added to urls used in the affected code path in version 2.0.0. Users are advised to...

8.6CVSS9.9AI score0.47846EPSS
Exploits4References3
OSV
OSV
added 2022/08/01 12:0 a.m.29 views

CVE-2022-31188 Server-Side Request Forgery Vulnerability in Computer Vision Annotation Tool (CVAT)

CVAT is an opensource interactive video and image annotation tool for computer vision. Versions prior to 2.0.0 were found to be subject to a Server-side request forgery SSRF vulnerability. Validation has been added to urls used in the affected code path in version 2.0.0. Users are advised to...

8.6CVSS9AI score0.47846EPSS
Exploits4References5
Positive Technologies
Positive Technologies
added 2022/08/01 12:0 a.m.3 views

PT-2022-5432 · Cvat · Cvat

Name of the Vulnerable Software and Affected Versions: CVAT versions prior to 2.0.0 Description: The issue is related to insufficient validation of incoming requests, which can allow a remote attacker to perform a Server-side request forgery SSRF attack. Validation has been added to URLs used in...

9.8CVSS9.4AI score0.47846EPSS
Exploits4References14
CVE
CVE
added 2022/08/01 12:0 a.m.89 views

CVE-2022-31188

CVAT (CVE-2022-31188) contains a Server-Side Request Forgery (SSRF) vulnerability in versions prior to 2.0.0, tied to URL handling without proper validation. Version 2.0.0 introduced input validation in the affected code path, and users are advised to upgrade to 2.0.0 or later. There are no docum...

9.8CVSS9.4AI score0.47846EPSS
Exploits4References3Affected Software1
Rows per page
Query Builder