Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 10:49 p.m.7 views

CVE-2022-1243

CRHTLF can lead to invalid protocol extraction potentially leading to XSS in GitHub repository medialize/uri.js prior to 1.19.11...

7.2CVSS5.9AI score0.00663EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/28 11:42 a.m.31 views

Security Bulletin: IBM App Connect Enterprise Certified Container IntegrationServer components that use Designer flows may be vulnerable to CVE-2022-1243

Summary Node.js module URI.js is used by IBM App Connect Enterprise Certified Container for processing URIs in Designer flows. IBM App Connect Enterprise Certified Container IntegrationServers that use Designer flows may be vulnerable to CVE-2022-1243. This bulletin provides patch information to...

7.2CVSS0.9AI score0.00663EPSS
Exploits1Affected Software1
OSV
OSV
added 2022/04/05 3:5 p.m.27 views

CVE-2022-1243 CRHTLF can lead to invalid protocol extraction potentially leading to XSS in medialize/uri.js

CRHTLF can lead to invalid protocol extraction potentially leading to XSS in GitHub repository medialize/uri.js prior to 1.19.11...

7.2CVSS6.6AI score0.00663EPSS
Exploits1References4
CVE
CVE
added 2022/04/05 3:5 p.m.107 views

CVE-2022-1243

CVE-2022-1243 concerns the medialize/uri.js library. The issue, caused by CRHTLF, can lead to invalid protocol extraction and potential cross‑site scripting (XSS) when processing user‑supplied URLs in uri.js prior to version 1.19.11. The vulnerability affects medialize/uri.js used by projects suc...

7.2CVSS6.1AI score0.00663EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder