Lucene search
+L

8 matches found

nessus
nessus
added 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2022-24723

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - URI.js is a Javascript URL mutation library. Before version 1.19.9, whitespace characters are not removed from the beginning of the protocol, so URLs are not...

5.3CVSS6.5AI score0.01995EPSS
Exploits1References3
nessus
nessus
added 2024/06/03 12:0 a.m.21 views

RHEL 8 : dotnet5.0 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - urijs: Authorization Bypass Through User-Controlled Key CVE-2022-0613 - URI.js is a Javascript URL mutati...

6.5CVSS7.2AI score0.01995EPSS
Exploits2References2
ibm
ibm
added 2023/01/30 9:27 p.m.48 views

Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.

Summary Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak. Node.js follow-redirects is used by IBM Robotic Process Automation as part of API Server functionality CVE-2022-0536. Madialize URI.js module for NPM is used by IBM Robotic Process Automation as par...

7.8CVSS7.7AI score0.01995EPSS
Exploits3Affected Software1
redhat
redhat
added 2022/05/05 4:52 a.m.78 views

Moderate: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.3.10 security updates and bug fixes

Red Hat Advanced Cluster Management for Kubernetes 2.3.10 General Availability release images, which provide security updates and bug fixes. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a...

8.8CVSS7.3AI score0.05664EPSS
Exploits6References36
vulnrichment
vulnrichment
added 2022/03/03 8:35 p.m.5 views

CVE-2022-24723 Improper Input Validation in URI.js

URI.js is a Javascript URL mutation library. Before version 1.19.9, whitespace characters are not removed from the beginning of the protocol, so URLs are not parsed properly. This issue has been patched in version 1.19.9. Removing leading whitespace from values before passing them to URI.parse ca...

5.3CVSS5.2AI score0.01995EPSS
Exploits1References4
cve
cve
added 2022/03/03 8:35 p.m.221 views

CVE-2022-24723

CVE-2022-24723 concerns Medialize URI.js, a JavaScript URL mutation library. The vulnerability arises from leading whitespace not being removed from the beginning of the protocol, causing improper URL parsing in versions prior to 1.19.9. The issue has been patched in v1.19.9; a documented workaro...

5.3CVSS5.4AI score0.01995EPSS
Exploits1References4Affected Software1
cvelist
cvelist
added 2022/03/03 8:35 p.m.63 views

CVE-2022-24723 Improper Input Validation in URI.js

URI.js is a Javascript URL mutation library. Before version 1.19.9, whitespace characters are not removed from the beginning of the protocol, so URLs are not parsed properly. This issue has been patched in version 1.19.9. Removing leading whitespace from values before passing them to URI.parse ca...

5.3CVSS5.4AI score0.01995EPSS
Exploits1References4
vulnersosv
vulnersosv
added 2022/03/03 7:23 p.m.5 views

01_basic_webpack (>=1.0.0 <=1.0.8), 0726react (=0.1.1) +12923 more potentially affected by CVE-2022-24723 via urijs (>=1.16.1 <=1.19.8)

urijs NPM version =1.16.1, =1.0.0, =1.0.9, =0.0.1, =0.0.1-beta.0, =1.0.0, =1.0.4, =1.0.1, =0.0.1, =0.1.1, =0.1.0, =0.0.1, =0.0.3 and more Source cves: CVE-2022-24723 Source advisory: OSV:GHSA-GMV4-R438-P67F...

5.3CVSS6.3AI score0.01995EPSS
Exploits1
Rows per page
Query Builder