CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-45956

Boa Web Server versions 0.94.13 through 0.94.14 fail to validate the correct security constraint on the HEAD HTTP method allowing everyone to bypass the Basic Authorization mechanism.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.5%

CVSS Severity

CVSS v3 Score 5.3

References

https://packetstormsecurity.com/files/169962/Boa-Web-Server-0.94.13-0.94.14-Authentication-Bypass.html
https://packetstormsecurity.com/files/169962/Boa-Web-Server-0.94.13-0.94.14-Authentication-Bypass.html

Products affected by CVE-2022-45956

Boa » Boa » Version: 0.94.13

cpe:2.3:a:boa:boa:0.94.13
Boa » Boa » Version: 0.94.14

cpe:2.3:a:boa:boa:0.94.14

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-45956

Products

Pricing

Contact Us