Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2022-23604
HistoryFeb 15, 2022 - 4:15 p.m.

CVE-2022-23604

2022-02-1516:15:09
Google
osv.dev
4
twentysix
x26-cogs
defender cog
admin privilege escalation
vulnerability
discord bot
patch

AI Score

7.2

Confidence

High

EPSS

0.002

Percentile

53.9%

JSON

x26-Cogs is a repository of cogs made by Twentysix for the Red Discord bot. Among these cogs is the Defender cog, a tool for Discord server moderation. A vulnerability in the Defender cog prior to version 1.10.0 allows users with admin privileges to issue commands as other users who share the same server. If a bot owner shares the same server as the attacker, it is possible for the attacker to issue bot-owner restricted commands. The issue has been patched in version 1.10.0. One may unload the Defender cog as a workaround.

Related

prion 1
cvelist 1
cve 1
nvd 1
prion
prion
Design/Logic Flaw
2022-02-15 16:15:00
cvelist
cvelist
CVE-2022-23604 Privilege escalation in Defender
2022-02-15 15:40:11
cve
cve
CVE-2022-23604
2022-02-15 16:15:09
nvd
nvd
CVE-2022-23604
2022-02-15 16:15:09

AI Score

7.2

Confidence

High

EPSS

0.002

Percentile

53.9%

JSON
Related for OSV:CVE-2022-23604
prion1cvelist1cve1nvd1