Lucene search
TR-CERTCVE-2022-2265HistorySep 21, 2022 - 2:15 p.m.
CVE-2022-2265
2022-09-2114:15:11
CWE-22
CWE-35
TR-CERT
web.nvd.nist.gov
29
2
identity management
directory management
cve-2022-2265
security vulnerability
path traversal
çekino bilgi teknolojileri
nvd
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.002
Percentile
51.8%
The Identity and Directory Management System developed by Çekino Bilgi Teknolojileri before version 2.1.25 has an unauthenticated Path traversal vulnerability. This has been fixed in the version 2.1.25
Affected configurations
Node
identity_and_directory_management_system_projectidentity_and_directory_management_systemRange<2.1.25
| Vendor | Product | Version | CPE |
|---|---|---|---|
| identity_and_directory_management_system_project | identity_and_directory_management_system | * | cpe:2.3:a:identity_and_directory_management_system_project:identity_and_directory_management_system:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Çekino Bilgi Teknolojileri",
"vendor": "Çekino Bilgi Teknolojileri",
"versions": [
{
"lessThan": "2.1.25",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
nvd
nvd
CVE-2022-2265
2022-09-21 14:15:11
prion
prion
Path traversal
2022-09-21 14:15:00
cvelist
cvelist
CVE-2022-2265 Path traversal in Identity and Directory Management System
2022-09-21 13:45:18
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.002
Percentile
51.8%
Related for CVE-2022-2265