CVE Details for CVE: CVE-2022-25318
Summary
An issue was discovered in Cerebrate through 1.4. An incorrect sharing group ACL allowed an unprivileged user to edit and modify sharing groups.
Timestamps | |
---|---|
Last major update | 03-11-2023 - 02:54 |
Published | 18-02-2022 - 06:15 |
Last modified | 03-11-2023 - 02:54 |
Vulnerable Configurations
-
cpe:2.3:a:cerebrate-project:cerebrate:0.1:*:*:*:*:*:*:*
cpe:2.3:a:cerebrate-project:cerebrate:0.1:*:*:*:*:*:*:*
-
cpe:2.3:a:cerebrate-project:cerebrate:0.2:*:*:*:*:*:*:*
cpe:2.3:a:cerebrate-project:cerebrate:0.2:*:*:*:*:*:*:*
-
cpe:2.3:a:cerebrate-project:cerebrate:0.3:*:*:*:*:*:*:*
cpe:2.3:a:cerebrate-project:cerebrate:0.3:*:*:*:*:*:*:*
-
cpe:2.3:a:cerebrate-project:cerebrate:1.0:*:*:*:*:*:*:*
cpe:2.3:a:cerebrate-project:cerebrate:1.0:*:*:*:*:*:*:*
-
cpe:2.3:a:cerebrate-project:cerebrate:1.1:*:*:*:*:*:*:*
cpe:2.3:a:cerebrate-project:cerebrate:1.1:*:*:*:*:*:*:*
-
cpe:2.3:a:cerebrate-project:cerebrate:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:cerebrate-project:cerebrate:1.1.1:*:*:*:*:*:*:*
-
cpe:2.3:a:cerebrate-project:cerebrate:1.2:*:*:*:*:*:*:*
cpe:2.3:a:cerebrate-project:cerebrate:1.2:*:*:*:*:*:*:*
-
cpe:2.3:a:cerebrate-project:cerebrate:1.3:*:*:*:*:*:*:*
cpe:2.3:a:cerebrate-project:cerebrate:1.3:*:*:*:*:*:*:*
-
cpe:2.3:a:cerebrate-project:cerebrate:1.4:*:*:*:*:*:*:*
cpe:2.3:a:cerebrate-project:cerebrate:1.4:*:*:*:*:*:*:*
CWE
CVSS
Base
4.0
Impact
2.9
Exploitability
8.0
Access
Vector | Complexity | Authentication |
---|---|---|
NETWORK | LOW | SINGLE |
Impact
Confidentiality | Integrity | Availability |
---|---|---|
NONE | PARTIAL | NONE |
CVSS3
Base
4.3
Impact
1.4
Exploitability
2.8
Access
Attack Complexity | Attack vector | Privileges Required | Scope | User Interaction |
---|---|---|---|---|
LOW | NETWORK | LOW | UNCHANGED | NONE |
Impact
Confidentiality | Integrity | Availability |
---|---|---|
NONE | LOW | NONE |