Vulnerability Details CVE-2022-45589
All versions before 8.0.1-R2022-10-RT and 7.3.1-R2022-09-RT of the Talend ESB Runtime are potentially vulnerable to SQL Injection attacks in the provisioning service only. Users of the provisioning service should upgrade to either 8.0.1-R2022-10-RT or 7.3.1-R2022-09-RT or a later release and use it in place of the previous version.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.7%
CVSS Severity
CVSS v3 Score 7.2
References
Products affected by CVE-2022-45589
-
cpe:2.3:a:talend:esb_runtime:-
-
cpe:2.3:a:talend:esb_runtime:5.1
-
cpe:2.3:a:talend:esb_runtime:7.1.1-r2021-09
-
cpe:2.3:a:talend:esb_runtime:8.0