Lucene search

[email protected]NVD:CVE-2022-48475

HistorySep 12, 2023 - 8:15 a.m.

CVE-2022-48475

2023-09-1208:15:13

CWE-120

CWE-400

[email protected]

web.nvd.nist.gov

buffer overflow

control de ciber

printing function

administrator

modified request

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.2

Confidence

High

EPSS

0.002

Percentile

53.8%

JSON

Buffer Overflow vulnerability in Control de Ciber version 1.650, in the printing function. Sending a modified request by the attacker could cause a Buffer Overflow when the adminitrator tries to accept or delete the print query created by the request.

Affected configurations

Nvd

Node

cbmcontrol_de_ciberMatch1.650

VendorProductVersionCPE
cbmcontrol_de_ciber1.650cpe:2.3:a:cbm:control_de_ciber:1.650:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cbm	control_de_ciber	1.650	cpe:2.3:a:cbm:control_de_ciber:1.650:::::::*

References

www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-control-de-ciber

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.2

Confidence

High

EPSS

0.002

Percentile

53.8%

JSON

Related for NVD:CVE-2022-48475

prion1 cvelist1 vulnrichment1 cve1 githubexploit1