Vulnerability Details CVE-2022-42725
Warpinator through 1.2.14 allows access outside of an intended directory, as demonstrated by symbolic directory links.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.2%
CVSS Severity
CVSS v3 Score 7.5
References
- http://www.openwall.com/lists/oss-security/2022/10/24/1
- http://www.openwall.com/lists/oss-security/2023/04/26/1
- https://github.com/linuxmint/warpinator/commit/5244c33d4c109ede9607b9d94461650410e2cddc
- https://github.com/linuxmint/warpinator/commit/8bfd2f8b3f1b0c0f0a5a6d275702d107b9e08a94
- https://github.com/linuxmint/warpinator/commit/95124fd4468683dd69ddd7b3da0e9906ce6beae2
- https://github.com/linuxmint/warpinator/commit/f4907ef6a17a189d56ab0a9da4b53190b061ad75
- http://www.openwall.com/lists/oss-security/2022/10/24/1
- http://www.openwall.com/lists/oss-security/2023/04/26/1
- https://github.com/linuxmint/warpinator/commit/5244c33d4c109ede9607b9d94461650410e2cddc
- https://github.com/linuxmint/warpinator/commit/8bfd2f8b3f1b0c0f0a5a6d275702d107b9e08a94
- https://github.com/linuxmint/warpinator/commit/95124fd4468683dd69ddd7b3da0e9906ce6beae2
- https://github.com/linuxmint/warpinator/commit/f4907ef6a17a189d56ab0a9da4b53190b061ad75
Products affected by CVE-2022-42725
-
cpe:2.3:a:linuxmint:warpinator:1.0.3
-
cpe:2.3:a:linuxmint:warpinator:1.0.4
-
cpe:2.3:a:linuxmint:warpinator:1.0.5
-
cpe:2.3:a:linuxmint:warpinator:1.0.6
-
cpe:2.3:a:linuxmint:warpinator:1.0.7
-
cpe:2.3:a:linuxmint:warpinator:1.0.8
-
cpe:2.3:a:linuxmint:warpinator:1.0.9
-
cpe:2.3:a:linuxmint:warpinator:1.1.0
-
cpe:2.3:a:linuxmint:warpinator:1.1.1
-
cpe:2.3:a:linuxmint:warpinator:1.1.2
-
cpe:2.3:a:linuxmint:warpinator:1.2.0
-
cpe:2.3:a:linuxmint:warpinator:1.2.1
-
cpe:2.3:a:linuxmint:warpinator:1.2.10
-
cpe:2.3:a:linuxmint:warpinator:1.2.11
-
cpe:2.3:a:linuxmint:warpinator:1.2.12
-
cpe:2.3:a:linuxmint:warpinator:1.2.13
-
cpe:2.3:a:linuxmint:warpinator:1.2.14
-
cpe:2.3:a:linuxmint:warpinator:1.2.2
-
cpe:2.3:a:linuxmint:warpinator:1.2.3
-
cpe:2.3:a:linuxmint:warpinator:1.2.4
-
cpe:2.3:a:linuxmint:warpinator:1.2.5
-
cpe:2.3:a:linuxmint:warpinator:1.2.6
-
cpe:2.3:a:linuxmint:warpinator:1.2.7
-
cpe:2.3:a:linuxmint:warpinator:1.2.8
-
cpe:2.3:a:linuxmint:warpinator:1.2.9