Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:26 p.m.6 views

CVE-2022-22701

PartKeepr versions up to v1.4.0, loads attachments using a URL while creating a part and allows the use of the 'file://' URI scheme, allowing an authenticated user to read local files...

6.5CVSS6.4AI score0.01017EPSS
Exploits1References1
NVD
NVD
added 2022/01/10 2:12 p.m.12 views

CVE-2022-22701

PartKeepr versions up to v1.4.0, loads attachments using a URL while creating a part and allows the use of the 'file://' URI scheme, allowing an authenticated user to read local files...

6.5CVSS0.01017EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/01/07 9:59 p.m.7 views

CVE-2022-22701

PartKeepr versions up to v1.4.0, loads attachments using a URL while creating a part and allows the use of the 'file://' URI scheme, allowing an authenticated user to read local files...

6.5CVSS6.5AI score0.01017EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/01/07 9:59 p.m.18 views

CVE-2022-22701

PartKeepr versions up to v1.4.0, loads attachments using a URL while creating a part and allows the use of the 'file://' URI scheme, allowing an authenticated user to read local files...

6.4AI score0.01017EPSS
Exploits1References2
CVE
CVE
added 2022/01/07 9:59 p.m.120 views

CVE-2022-22701

PartKeepr vulnerability (CVE-2022-22701) affects PartKeepr up to v1.4.0 and is triggered when loading attachments by URL, enabling the use of the file:// URI scheme. An authenticated user can read local files due to how attachments are loaded during part creation. Impact is read access to local f...

6.5CVSS6.1AI score0.01017EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder