CVE-2022-40274 in Grideainformazioni

Riassunto

di MITRE • 30/09/2022

Gridea version 0.9.3 allows an external attacker to execute arbitrary code remotely on any client attempting to view a malicious markdown file through Gridea. This is possible because the application has the 'nodeIntegration' option enabled.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Prenotare

08/09/2022

Divulgazione

30/09/2022

Moderazione

accettato

CPE

pronto

EPSS

0.00434

KEV

no

Attività

molto basso

Fonti

Might our Artificial Intelligence support you?

Check our Alexa App!