CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2022-4799 affects usememos/memos before 0.9.1. Root cause: Authorization Bypass Through a User-Controlled Key, i.e., improper authentication. Impact: unauthorized access to resources (owners/posts) and, per CNVD, potential IDOR-style actions like deleting posts. Remediation: upgrade to versio...

8.6CVSS6.7AI score0.00762EPSS

Exploits1References2Affected Software1

CVE•added 2022/12/28 12:0 a.m.•70 views

CVE-2022-4802

The CVE-2022-4802 entry covers usememos/memos prior to 0.9.1, where an Authorization Bypass Through a User-Controlled Key is reported. Multiple connected sources describe it as Improper Authorization/IDOR-like behavior that could allow bypassing access controls to view, update, or delete shortcut...

9.1CVSS5.8AI score0.00568EPSS

Exploits1References2Affected Software1

CVE•added 2022/12/28 12:0 a.m.•74 views

CVE-2022-4798

CVE-2022-4798 affects usememos/memos versions prior to 0.9.1. The issue is an Authorization Bypass Through a User-Controlled Key (Improper Authorization) that could enable unauthorized access or actions such as potential API reset (per reported sources). Affected component is the memo platform’s ...

8.6CVSS5.6AI score0.00702EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2022/12/28 12:0 a.m.•5 views

CVE-2022-4798 Authorization Bypass Through User-Controlled Key in usememos/memos

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1...

8.6CVSS6.1AI score0.00702EPSS

Exploits1References2

Cvelist•added 2022/12/28 12:0 a.m.•22 views

CVE-2022-4810 Improper Access Control in usememos/memos

Improper Access Control in GitHub repository usememos/memos prior to 0.9.1...

6.3CVSS4.9AI score0.00465EPSS

Exploits1References2

Cvelist•added 2022/12/28 12:0 a.m.•39 views

CVE-2022-4796 Incorrect Use of Privileged APIs in usememos/memos

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1...

8.1CVSS8.4AI score0.00761EPSS

Exploits1References2

Cvelist•added 2022/12/28 12:0 a.m.•27 views

CVE-2022-4797 Improper Restriction of Excessive Authentication Attempts in usememos/memos

Improper Restriction of Excessive Authentication Attempts in GitHub repository usememos/memos prior to 0.9.1...

9.8CVSS5AI score0.00713EPSS

Exploits1References2

Cvelist•added 2022/12/28 12:0 a.m.•37 views

CVE-2022-4805 Incorrect Use of Privileged APIs in usememos/memos

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1...

7.3CVSS5AI score0.00507EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by