Dhis 2@2.39.0 Security Vulnerabilities and Issues — Dhis 2@2.39.0 CVE List

Lucene search

Dhis2Dhis 22.39.0

3 matches found

CVE•added 2022/12/08 10:15 p.m.•59 views

CVE-2022-41949

DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. In affected versions an authenticated DHIS2 user can craft a request to DHIS2 to instruct the server to make requests to external resources (like third party servers). This could allow...

5CVSS4.5AI score0.00056EPSS

CVE•added 2022/12/08 11:15 p.m.•58 views

CVE-2022-41948

DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. Affected versions are subject to a privilege escalation vulnerability. A DHIS2 user with authority to manage users can assign superuser privileges to themself by manually crafting an H...

7.2CVSS6.8AI score0.00043EPSS

CVE•added 2022/12/08 11:15 p.m.•56 views

CVE-2022-41947

DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. Through various features of DHIS2, an authenticated user may be able to upload a file which includes embedded javascript. The user could then potentially trick another authenticated us...

5.4CVSS5.2AI score0.00085EPSS