Lucene search
Veracode Vulnerability DatabaseVERACODE:35577HistoryMay 17, 2022 - 1:18 p.m.
Privilege Escalation
2022-05-1713:18:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3
0.002 Low
EPSS
Percentile
55.6%
ipmatcher is vulnerable to privilege escalation. The vulnerability exists due to lack of input validations of octal & hexadecimal input data which allows an attacker to gain access and perform unauthorized actions.
References
github.com/advisories/GHSA-qj93-37f5-mr29
github.com/jchristn/IpMatcher
github.com/jchristn/IpMatcher/commit/81d77c2f33aa912dbd032b34b9e184fc6e041d89
github.com/jchristn/WatsonWebserver
github.com/kaoudis/advisories/blob/main/0-2021.md
github.com/sickcodes/security/blob/master/advisories/SICK-2021-060.md
Related
nvd
nvd
CVE-2021-33318
2022-05-16 16:15:07
cvelist
cvelist
CVE-2021-33318
2022-05-16 15:12:33
packetstorm
packetstorm
IpMatcher 1.0.4.1 Server-Side Request Forgery
2022-05-16 00:00:00
cve
cve
CVE-2021-33318
2022-05-16 16:15:07
github
github
Improper Input Validation in IpMatcher
2022-05-17 00:00:35
osv
osv
Improper Input Validation in IpMatcher
2022-05-17 00:00:35
CVE-2021-33318
2022-05-16 16:15:07
prion
prion
Input validation
2022-05-16 16:15:00
zdt
zdt
IpMatcher 1.0.4.1 Server-Side Request Forgery Vulnerability
2022-05-16 00:00:00