CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-4235

RushBet version 2022.23.1-b490616d allows a remote attacker to steal customer accounts via use of a malicious application. This is possible because the application exposes an activity and does not properly validate the data it receives.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.5%

CVSS Severity

CVSS v3 Score 5.4

References

https://fluidattacks.com/advisories/miller/
https://fluidattacks.com/advisories/miller/

Products affected by CVE-2022-4235

Rushstreetinteractive » Rushbet » Version: 2022.23.1-b490616d

cpe:2.3:a:rushstreetinteractive:rushbet:2022.23.1-b490616d

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-4235

Products

Pricing

Contact Us