Vulnerability Details CVE-2022-38114
This vulnerability occurs when a web server fails to correctly process the Content-Length of POST requests. This can lead to HTTP request smuggling or XSS.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.8%
CVSS Severity
CVSS v3 Score 6.1
References
- https://documentation.solarwinds.com/en/success_center/sem/content/release_notes/sem_2022-4_release_notes.htm
- https://www.solarwinds.com/trust-center/security-advisories/CVE-2022-38114
- https://documentation.solarwinds.com/en/success_center/sem/content/release_notes/sem_2022-4_release_notes.htm
- https://www.solarwinds.com/trust-center/security-advisories/CVE-2022-38114
Products affected by CVE-2022-38114
-
cpe:2.3:a:solarwinds:security_event_manager:-