Lucene search
TR-CERTCVE-2022-24037HistoryNov 18, 2022 - 8:15 a.m.
CVE-2022-24037
2022-11-1808:15:09
CWE-20
TR-CERT
web.nvd.nist.gov
33
11
cve-2022-24037
karmasis
infraskope
siem
unauthenticated access
vulnerability
nvd.
CVSS3
8.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
AI Score
7.9
Confidence
High
EPSS
0.003
Percentile
68.3%
Karmasis Informatics Infraskope SIEM+
has an unauthenticated access vulnerability which could allow an unauthenticated attacker to obtain critical information.
Affected configurations
Node
karmasisinfraskope_siem\+Range<7.10.00
| Vendor | Product | Version | CPE |
|---|---|---|---|
| karmasis | infraskope_siem\+ | * | cpe:2.3:a:karmasis:infraskope_siem\+:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Infraskope SIEM+",
"vendor": "Karmasis Informatics",
"versions": [
{
"lessThan": "7.10.xx",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Social References
More
Related
prion
prion
Improper access control
2022-11-18 08:15:00
cnvd
cnvd
Karmasis Infraskope Agent Authentication Error Vulnerability
2022-11-23 00:00:00
nvd
nvd
CVE-2022-24037
2022-11-18 08:15:09
cvelist
cvelist
CVSS3
8.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
AI Score
7.9
Confidence
High
EPSS
0.003
Percentile
68.3%
Related for CVE-2022-24037