Lucene search

K
nvd[email protected]NVD:CVE-2022-41777
HistoryDec 05, 2022 - 4:15 a.m.

CVE-2022-41777

2022-12-0504:15:09
web.nvd.nist.gov
3
cve-2022-41777
nako3edit
remote attacker
decodeuricomponent
server crash

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.006

Percentile

78.9%

Improper check or handling of exceptional conditions vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to inject an invalid value to decodeURIComponent of nako3edit, which may lead the server to crash.

Affected configurations

Nvd
Node
kujirahandnadesiko3Range3.3.74
VendorProductVersionCPE
kujirahandnadesiko3*cpe:2.3:a:kujirahand:nadesiko3:*:*:*:*:*:*:*:*

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.006

Percentile

78.9%

Related for NVD:CVE-2022-41777