Vulnerability Details CVE-2022-37298
Shinken Solutions Shinken Monitoring Version 2.4.3 affected is vulnerable to Incorrect Access Control. The SafeUnpickler class found in shinken/safepickle.py implements a weak authentication scheme when unserializing objects passed from monitoring nodes to the Shinken monitoring server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.43
EPSS Ranking 97.4%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2022-37298
-
cpe:2.3:a:shinken-monitoring:shinken_monitoring:2.4.3