Lucene search

INCIBECVE-2022-48475

HistorySep 12, 2023 - 8:15 a.m.

CVE-2022-48475

2023-09-1208:15:13

CWE-120

CWE-400

INCIBE

web.nvd.nist.gov

cve-2022-48475

buffer overflow

control de ciber

printing function

security vulnerability

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.5

Confidence

High

EPSS

0.002

Percentile

53.8%

JSON

Buffer Overflow vulnerability in Control de Ciber version 1.650, in the printing function. Sending a modified request by the attacker could cause a Buffer Overflow when the adminitrator tries to accept or delete the print query created by the request.

Affected configurations

Nvd

Vulners

Node

cbmcontrol_de_ciberMatch1.650

VendorProductVersionCPE
cbmcontrol_de_ciber1.650cpe:2.3:a:cbm:control_de_ciber:1.650:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cbm	control_de_ciber	1.650	cpe:2.3:a:cbm:control_de_ciber:1.650:::::::*

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Control de Ciber",
    "vendor": "Control de Ciber",
    "versions": [
      {
        "status": "affected",
        "version": "v1.650"
      }
    ]
  }
]

References

www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-control-de-ciber

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.5

Confidence

High

EPSS

0.002

Percentile

53.8%

JSON

Related for CVE-2022-48475