CVE-2022-40274 in Grideainfo

Zusammenfassung

von MITRE • 30.09.2022

Gridea version 0.9.3 allows an external attacker to execute arbitrary code remotely on any client attempting to view a malicious markdown file through Gridea. This is possible because the application has the 'nodeIntegration' option enabled.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservieren

08.09.2022

Veröffentlichung

30.09.2022

Moderieren

akzeptiert

Eintrag

VDB-210055

CPE

bereit

EPSS

0.00434

KEV

nein

Aktivitäten

very low

Quellen

Interested in the pricing of exploits?

See the underground prices here!