Lucene search

GoogleOSV:CVE-2022-44136

HistoryNov 30, 2022 - 3:15 p.m.

CVE-2022-44136

2022-11-3015:15:10

Google

osv.dev

zenario cms

9.3.57186

remote code execution

vulnerability

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.8%

JSON

Zenario CMS 9.3.57186 is vulnerable to Remote Code Excution (RCE).

CPENameOperatorVersion
zenarioeq9.2.57169
zenarioeq8.3.48583
zenarioeq7.2.1
zenarioeq8.0.45032
zenarioeq8.9.54153
zenarioeq8.1.45530
zenarioeq9.2
zenarioeq8.7
zenarioeq7.0.2e
zenarioeq8.5.51340

Name	Operator	Version
zenario	eq	9.2.57169
zenario	eq	8.3.48583
zenario	eq	7.2.1
zenario	eq	8.0.45032
zenario	eq	8.9.54153
zenario	eq	8.1.45530
zenario	eq	9.2
zenario	eq	8.7
zenario	eq	7.0.2e
zenario	eq	8.5.51340

Rows per page:

1-10 of 761

References

com0t.github.io/zenar.io/2022/10/18/Unauthent-RCE-Zenar.io~9.3.html

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.8%

JSON

Related for OSV:CVE-2022-44136