Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:47 a.m.11 views

CVE-2022-31177

Flask-AppBuilder is an application development framework built on top of Flask python framework. In versions prior to 4.1.3 an authenticated Admin user could query other users by their salted and hashed passwords strings. These filters could be made by using partial hashed password strings. The...

2.7CVSS6.5AI score0.00616EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/08/01 7:15 p.m.7 views

acryl-datahub-airflow-plugin (>=0.8.44.4 <=0.9.2.1rc2), aglow (>=0.1.0rc3 <=0.1.0rc4) +130 more potentially affected by CVE-2022-31177 via flask-appbuilder (>=1.10.0 <=4.1.2)

flask-appbuilder PYPI version =1.10.0, =0.8.44.4, =0.1.0rc3, =0.1.0, =2022.9.19, =1.0.7, =0.5.1, =0.2.0, =0.1.0, =1.0.0, =0.0.7, =0.0.1, =0.0.3, =0.0.6, =0.0.1, =0.0.3 and more Source cves: CVE-2022-31177 Source advisory: OSV:PYSEC-2022-247...

2.7CVSS5.8AI score0.00616EPSS
Exploits0
CVE
CVE
added 2022/08/01 7:5 p.m.147 views

CVE-2022-31177

CVE-2022-31177 affects Flask-AppBuilder versions prior to 4.1.3. An authenticated Admin could query other users by their salted and hashed password strings using partial hashed password strings. The server would not return full hashes, but an attacker could infer partial password hashes and their...

2.7CVSS3.1AI score0.00616EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/08/01 7:5 p.m.7 views

CVE-2022-31177 Possible to infer sensitive information through query strings in Flask-AppBuilder

Flask-AppBuilder is an application development framework built on top of Flask python framework. In versions prior to 4.1.3 an authenticated Admin user could query other users by their salted and hashed passwords strings. These filters could be made by using partial hashed password strings. The...

2.7CVSS3.3AI score0.00616EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/08/01 7:5 p.m.45 views

CVE-2022-31177

Removed by vendor...

2.7CVSS4.1AI score0.00616EPSS
Exploits0
GitLab Advisory Database
GitLab Advisory Database
added 2022/07/29 12:0 a.m.34 views

Duplicate

This advisory duplicates another...

2.7CVSS5.8AI score0.00616EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder