Vulnerability Details CVE-2022-32265
qDecoder before 12.1.0 does not ensure that the percent character is followed by two hex digits for URL decoding.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.6%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
- https://github.com/wolkykim/qdecoder/pull/29
- https://github.com/wolkykim/qdecoder/pull/29/commits/ce7c8a7ac450a823a11b06508ef1eb7441241f81#diff-1c4e2f5adfa1ad30618e78ff459b2c0758ecf34278459ad0a8d58db4fec622ea
- https://github.com/wolkykim/qdecoder/releases/tag/v12.1.0
- https://github.com/wolkykim/qdecoder/pull/29
- https://github.com/wolkykim/qdecoder/pull/29/commits/ce7c8a7ac450a823a11b06508ef1eb7441241f81#diff-1c4e2f5adfa1ad30618e78ff459b2c0758ecf34278459ad0a8d58db4fec622ea
- https://github.com/wolkykim/qdecoder/releases/tag/v12.1.0
Products affected by CVE-2022-32265
-
cpe:2.3:a:qdecoder_project:qdecoder:-
-
cpe:2.3:a:qdecoder_project:qdecoder:10.0.0
-
cpe:2.3:a:qdecoder_project:qdecoder:10.1.0
-
cpe:2.3:a:qdecoder_project:qdecoder:10.1.1
-
cpe:2.3:a:qdecoder_project:qdecoder:10.1.2
-
cpe:2.3:a:qdecoder_project:qdecoder:10.1.4
-
cpe:2.3:a:qdecoder_project:qdecoder:10.1.6
-
cpe:2.3:a:qdecoder_project:qdecoder:11.0.0
-
cpe:2.3:a:qdecoder_project:qdecoder:12.0.0
-
cpe:2.3:a:qdecoder_project:qdecoder:12.0.2
-
cpe:2.3:a:qdecoder_project:qdecoder:12.0.4
-
cpe:2.3:a:qdecoder_project:qdecoder:12.0.5
-
cpe:2.3:a:qdecoder_project:qdecoder:12.0.6
-
cpe:2.3:a:qdecoder_project:qdecoder:12.0.7
-
cpe:2.3:a:qdecoder_project:qdecoder:12.0.8
-
cpe:2.3:a:qdecoder_project:qdecoder:2.2.0
-
cpe:2.3:a:qdecoder_project:qdecoder:3.0.0
-
cpe:2.3:a:qdecoder_project:qdecoder:3.1.0
-
cpe:2.3:a:qdecoder_project:qdecoder:3.2.0
-
cpe:2.3:a:qdecoder_project:qdecoder:3.2.2
-
cpe:2.3:a:qdecoder_project:qdecoder:3.3.0
-
cpe:2.3:a:qdecoder_project:qdecoder:3.3.1
-
cpe:2.3:a:qdecoder_project:qdecoder:3.4.0
-
cpe:2.3:a:qdecoder_project:qdecoder:3.4.1
-
cpe:2.3:a:qdecoder_project:qdecoder:3.4.2
-
cpe:2.3:a:qdecoder_project:qdecoder:3.5.0
-
cpe:2.3:a:qdecoder_project:qdecoder:4.0.0
-
cpe:2.3:a:qdecoder_project:qdecoder:4.0.1
-
cpe:2.3:a:qdecoder_project:qdecoder:4.2.0
-
cpe:2.3:a:qdecoder_project:qdecoder:4.3.0
-
cpe:2.3:a:qdecoder_project:qdecoder:4.3.1
-
cpe:2.3:a:qdecoder_project:qdecoder:5.0.0
-
cpe:2.3:a:qdecoder_project:qdecoder:5.0.1
-
cpe:2.3:a:qdecoder_project:qdecoder:5.0.2
-
cpe:2.3:a:qdecoder_project:qdecoder:5.0.3
-
cpe:2.3:a:qdecoder_project:qdecoder:5.0.4
-
cpe:2.3:a:qdecoder_project:qdecoder:5.0.5
-
cpe:2.3:a:qdecoder_project:qdecoder:5.0.6
-
cpe:2.3:a:qdecoder_project:qdecoder:5.0.7
-
cpe:2.3:a:qdecoder_project:qdecoder:5.0.8
-
cpe:2.3:a:qdecoder_project:qdecoder:6.0.0
-
cpe:2.3:a:qdecoder_project:qdecoder:6.0.1
-
cpe:2.3:a:qdecoder_project:qdecoder:6.0.2
-
cpe:2.3:a:qdecoder_project:qdecoder:6.0.3
-
cpe:2.3:a:qdecoder_project:qdecoder:6.0.4
-
cpe:2.3:a:qdecoder_project:qdecoder:6.0.5
-
cpe:2.3:a:qdecoder_project:qdecoder:7.0.0
-
cpe:2.3:a:qdecoder_project:qdecoder:7.0.1
-
cpe:2.3:a:qdecoder_project:qdecoder:7.1.0
-
cpe:2.3:a:qdecoder_project:qdecoder:7.1.1
-
cpe:2.3:a:qdecoder_project:qdecoder:8.0.0
-
cpe:2.3:a:qdecoder_project:qdecoder:9.0.0
-
cpe:2.3:a:qdecoder_project:qdecoder:9.0.1
-
cpe:2.3:a:qdecoder_project:qdecoder:9.0.2
-
cpe:2.3:a:qdecoder_project:qdecoder:9.0.3