CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-31509

The iedadata/usap-dc-website repository through 1.0.1 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.2%

CVSS Severity

CVSS v3 Score 9.3

CVSS v2 Score 6.4

References

Products affected by CVE-2022-31509

Iedadata » Usap-Dc Web Submission And Dataset Search » Version: 1.0

cpe:2.3:a:iedadata:usap-dc_web_submission_and_dataset_search:1.0
Iedadata » Usap-Dc Web Submission And Dataset Search » Version: 1.0.0

cpe:2.3:a:iedadata:usap-dc_web_submission_and_dataset_search:1.0.0
Iedadata » Usap-Dc Web Submission And Dataset Search » Version: 1.0.1

cpe:2.3:a:iedadata:usap-dc_web_submission_and_dataset_search:1.0.1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved