CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-23923

All versions of package jailed are vulnerable to Sandbox Bypass via an exported alert() method which can access the main application. Exported methods are stored in the application.remote object.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.3%

CVSS Severity

CVSS v3 Score 8.6

CVSS v2 Score 7.5

References

https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-2441254
https://snyk.io/vuln/SNYK-JS-JAILED-2391490
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-2441254
https://snyk.io/vuln/SNYK-JS-JAILED-2391490

Products affected by CVE-2022-23923

Jailed Project » Jailed » Version: N/A

cpe:2.3:a:jailed_project:jailed:-
Jailed Project » Jailed » Version: 0.1.0

cpe:2.3:a:jailed_project:jailed:0.1.0
Jailed Project » Jailed » Version: 0.1.1

cpe:2.3:a:jailed_project:jailed:0.1.1
Jailed Project » Jailed » Version: 0.2.0

cpe:2.3:a:jailed_project:jailed:0.2.0
Jailed Project » Jailed » Version: 0.3.0

cpe:2.3:a:jailed_project:jailed:0.3.0
Jailed Project » Jailed » Version: 0.3.1

cpe:2.3:a:jailed_project:jailed:0.3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-23923

Products

Pricing

Contact Us