Lucene search
HistoryJun 04, 2024 - 10:15 p.m.
CVE-2022-28655
cve-2022-28655
arbitrary connections
dbus
session
tcp
7.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.2%
is_closing_session() allows users to create arbitrary tcp dbus connections
Affected configurations
Node
apport_projectapportRange<2.21.0
Node
canonicalubuntu_linuxMatch18.04esm
ORcanonicalubuntu_linuxMatch20.04lts
ORcanonicalubuntu_linuxMatch21.10-
ORcanonicalubuntu_linuxMatch22.04lts
Related
cvelist
cvelist
CVE-2022-28655
2024-06-04 21:56:50
cve
cve
CVE-2022-28655
2024-06-04 22:15:09
veracode
veracode
Authentication Bypass
2022-05-18 17:37:40
ubuntucve
ubuntucve
CVE-2022-28655
2022-05-17 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5427-1)
2022-05-18 00:00:00
nessus
nessus
osv
osv
apport vulnerabilities
2022-05-17 16:38:36
ubuntu
ubuntu
Apport vulnerabilities
2022-05-17 00:00:00
7.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.2%
Related for NVD:CVE-2022-28655