CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-41217

Cloudflow contains a unauthenticated file upload vulnerability, which makes it possible for an attacker to upload malicious files to the CLOUDFLOW PROOFSCOPE built-in storage.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.6%

CVSS Severity

CVSS v3 Score 9.8

References

https://csirt.divd.nl/CVE-2022-41217
https://csirt.divd.nl/DIVD-2022-00052
https://csirt.divd.nl/CVE-2022-41217
https://csirt.divd.nl/DIVD-2022-00052

Products affected by CVE-2022-41217

Hybridsoftware » Cloudflow » Version: 2.0.0

cpe:2.3:a:hybridsoftware:cloudflow:2.0.0
Hybridsoftware » Cloudflow » Version: 2.3.1

cpe:2.3:a:hybridsoftware:cloudflow:2.3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-41217

Products

Pricing

Contact Us