CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-41711

Badaso version 2.6.0 allows an unauthenticated remote attacker to execute arbitrary code remotely on the server. This is possible because the application does not properly validate the data uploaded by users.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.036

EPSS Ranking 87.3%

CVSS Severity

CVSS v3 Score 9.8

References

https://fluidattacks.com/advisories/harlow/
https://github.com/uasoft-indonesia/badaso/issues/802
https://fluidattacks.com/advisories/harlow/
https://github.com/uasoft-indonesia/badaso/issues/802

Products affected by CVE-2022-41711

Uatech » Badaso » Version: 2.6.0

cpe:2.3:a:uatech:badaso:2.6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-41711

Products

Pricing

Contact Us