Lucene search
MitreCVE-2022-45194HistoryNov 12, 2022 - 12:15 a.m.
CVE-2022-45194
2022-11-1200:15:12
CWE-611
mitre
web.nvd.nist.gov
30
10
cve-2022-45194
cbrn-analysis
xxe attacks
mws xml document
hash disclosure
nvd
CVSS3
4.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N
AI Score
4.7
Confidence
High
EPSS
0.001
Percentile
31.3%
CBRN-Analysis before 22 allows XXE attacks via am mws XML document, leading to NTLMv2-SSP hash disclosure.
Affected configurations
Node
bruhn-newtechcbrn-analysisRange<22
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bruhn-newtech | cbrn-analysis | * | cpe:2.3:a:bruhn-newtech:cbrn-analysis:*:*:*:*:*:*:*:* |
Social References
More
Related
prion
prion
Design/Logic Flaw
2022-11-12 00:15:00
cvelist
cvelist
CVE-2022-45194
2022-11-11 00:00:00
nvd
nvd
CVE-2022-45194
2022-11-12 00:15:12
CVSS3
4.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N
AI Score
4.7
Confidence
High
EPSS
0.001
Percentile
31.3%
Related for CVE-2022-45194