Vulnerability Details CVE-2022-1996
Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.9%
CVSS Severity
CVSS v3 Score 9.3
CVSS v2 Score 6.4
References
- https://github.com/emicklei/go-restful/commit/fd3c327a379ce08c68ef18765bdc925f5d9bad10
- https://huntr.dev/bounties/be837427-415c-4d8c-808b-62ce20aa84f1
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/575BLJ3Y2EQBRNTFR2OSQQ6L2W6UCST3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OBDD3Q23RCGAGHIXUCWBU6N3S4RNAKXB/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RQXU752ALW53OJAF5MG3WMR5CCZVLWW6/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SO5QC2JFW2PXBWAE27OYYYL5SPFUBHTY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W56PP46JVZEKCANBKXFKRVSBBRRMCY6V/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z55VUVGO7E5PJFXIOVAY373NZRHBNCI5/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZGQKWD6SE75PFBPFVSZYAKAVXKBZXKWS/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZY2SLWOQR4ZURQ7UBRZ7JIX6H6F5JHJR/
- https://security.netapp.com/advisory/ntap-20220923-0005/
- https://github.com/emicklei/go-restful/commit/fd3c327a379ce08c68ef18765bdc925f5d9bad10
- https://huntr.dev/bounties/be837427-415c-4d8c-808b-62ce20aa84f1
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/575BLJ3Y2EQBRNTFR2OSQQ6L2W6UCST3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OBDD3Q23RCGAGHIXUCWBU6N3S4RNAKXB/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RQXU752ALW53OJAF5MG3WMR5CCZVLWW6/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SO5QC2JFW2PXBWAE27OYYYL5SPFUBHTY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W56PP46JVZEKCANBKXFKRVSBBRRMCY6V/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z55VUVGO7E5PJFXIOVAY373NZRHBNCI5/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZGQKWD6SE75PFBPFVSZYAKAVXKBZXKWS/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZY2SLWOQR4ZURQ7UBRZ7JIX6H6F5JHJR/
- https://security.netapp.com/advisory/ntap-20220923-0005/
Products affected by CVE-2022-1996
-
cpe:2.3:a:go-restful_project:go-restful:1.0.0
-
cpe:2.3:a:go-restful_project:go-restful:1.0.1
-
cpe:2.3:a:go-restful_project:go-restful:1.1.0
-
cpe:2.3:a:go-restful_project:go-restful:1.1.1
-
cpe:2.3:a:go-restful_project:go-restful:1.1.2
-
cpe:2.3:a:go-restful_project:go-restful:1.1.3
-
cpe:2.3:a:go-restful_project:go-restful:1.2
-
cpe:2.3:a:go-restful_project:go-restful:2.0.0
-
cpe:2.3:a:go-restful_project:go-restful:2.1.0
-
cpe:2.3:a:go-restful_project:go-restful:2.10.0
-
cpe:2.3:a:go-restful_project:go-restful:2.11.0
-
cpe:2.3:a:go-restful_project:go-restful:2.11.1
-
cpe:2.3:a:go-restful_project:go-restful:2.11.2
-
cpe:2.3:a:go-restful_project:go-restful:2.12.0
-
cpe:2.3:a:go-restful_project:go-restful:2.13.0
-
cpe:2.3:a:go-restful_project:go-restful:2.14.0
-
cpe:2.3:a:go-restful_project:go-restful:2.14.1
-
cpe:2.3:a:go-restful_project:go-restful:2.14.2
-
cpe:2.3:a:go-restful_project:go-restful:2.14.3
-
cpe:2.3:a:go-restful_project:go-restful:2.15.0
-
cpe:2.3:a:go-restful_project:go-restful:2.2.0
-
cpe:2.3:a:go-restful_project:go-restful:2.2.1
-
cpe:2.3:a:go-restful_project:go-restful:2.3.0
-
cpe:2.3:a:go-restful_project:go-restful:2.4.0
-
cpe:2.3:a:go-restful_project:go-restful:2.5.0
-
cpe:2.3:a:go-restful_project:go-restful:2.6.0
-
cpe:2.3:a:go-restful_project:go-restful:2.6.1
-
cpe:2.3:a:go-restful_project:go-restful:2.7.0
-
cpe:2.3:a:go-restful_project:go-restful:2.7.1
-
cpe:2.3:a:go-restful_project:go-restful:2.8.0
-
cpe:2.3:a:go-restful_project:go-restful:2.8.1
-
cpe:2.3:a:go-restful_project:go-restful:2.9.0
-
cpe:2.3:a:go-restful_project:go-restful:2.9.1
-
cpe:2.3:a:go-restful_project:go-restful:2.9.2
-
cpe:2.3:a:go-restful_project:go-restful:2.9.3
-
cpe:2.3:a:go-restful_project:go-restful:2.9.4
-
cpe:2.3:a:go-restful_project:go-restful:2.9.5
-
cpe:2.3:a:go-restful_project:go-restful:2.9.6
-
cpe:2.3:a:go-restful_project:go-restful:3.0.0
-
cpe:2.3:a:go-restful_project:go-restful:3.0.1
-
cpe:2.3:a:go-restful_project:go-restful:3.1.0
-
cpe:2.3:a:go-restful_project:go-restful:3.2.0
-
cpe:2.3:a:go-restful_project:go-restful:3.3.0
-
cpe:2.3:a:go-restful_project:go-restful:3.3.1
-
cpe:2.3:a:go-restful_project:go-restful:3.3.3
-
cpe:2.3:a:go-restful_project:go-restful:3.4.0
-
cpe:2.3:a:go-restful_project:go-restful:3.5.0
-
cpe:2.3:a:go-restful_project:go-restful:3.5.1
-
cpe:2.3:a:go-restful_project:go-restful:3.5.2
-
cpe:2.3:a:go-restful_project:go-restful:3.6.0
-
cpe:2.3:a:go-restful_project:go-restful:3.7.0
-
cpe:2.3:a:go-restful_project:go-restful:3.7.1
-
cpe:2.3:a:go-restful_project:go-restful:3.7.2
-
cpe:2.3:a:go-restful_project:go-restful:3.7.3
-
cpe:2.3:a:go-restful_project:go-restful:3.7.4
-
cpe:2.3:o:fedoraproject:fedora:35
-
cpe:2.3:o:fedoraproject:fedora:36