Vulnerability Details CVE-2022-4930
A vulnerability classified as problematic was found in nuxsmin sysPass up to 3.2.4. Affected by this vulnerability is an unknown functionality of the component URL Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 3.2.5 is able to address this issue. The patch is named 4da4d031732ecca67519851fd0c34597dbb8ee55. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-222319.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.2%
CVSS Severity
CVSS v3 Score 3.5
CVSS v2 Score 4.0
References
- https://github.com/nuxsmin/sysPass/commit/4da4d031732ecca67519851fd0c34597dbb8ee55
- https://github.com/nuxsmin/sysPass/pull/1832
- https://github.com/nuxsmin/sysPass/releases/tag/3.2.5
- https://vuldb.com/?ctiid.222319
- https://vuldb.com/?id.222319
- https://github.com/nuxsmin/sysPass/commit/4da4d031732ecca67519851fd0c34597dbb8ee55
- https://github.com/nuxsmin/sysPass/pull/1832
- https://github.com/nuxsmin/sysPass/releases/tag/3.2.5
- https://vuldb.com/?ctiid.222319
- https://vuldb.com/?id.222319
Products affected by CVE-2022-4930
-
cpe:2.3:a:syspass:syspass:1.0.2
-
cpe:2.3:a:syspass:syspass:1.0.3
-
cpe:2.3:a:syspass:syspass:1.0.4
-
cpe:2.3:a:syspass:syspass:1.0.5
-
cpe:2.3:a:syspass:syspass:1.0.6
-
cpe:2.3:a:syspass:syspass:1.0.7
-
cpe:2.3:a:syspass:syspass:1.0.8
-
cpe:2.3:a:syspass:syspass:1.0.9
-
cpe:2.3:a:syspass:syspass:1.1.2.13
-
cpe:2.3:a:syspass:syspass:1.1.2.15
-
cpe:2.3:a:syspass:syspass:1.1.2.16
-
cpe:2.3:a:syspass:syspass:1.1.2.17
-
cpe:2.3:a:syspass:syspass:1.1.2.18
-
cpe:2.3:a:syspass:syspass:1.1.2.19
-
cpe:2.3:a:syspass:syspass:1.1.2.20
-
cpe:2.3:a:syspass:syspass:1.1.2.21
-
cpe:2.3:a:syspass:syspass:1.1.2.22
-
cpe:2.3:a:syspass:syspass:1.1.2.23
-
cpe:2.3:a:syspass:syspass:1.1.2.24
-
cpe:2.3:a:syspass:syspass:1.2.0.01
-
cpe:2.3:a:syspass:syspass:1.2.0.02
-
cpe:2.3:a:syspass:syspass:1.2.0.03
-
cpe:2.3:a:syspass:syspass:1.2.0.04
-
cpe:2.3:a:syspass:syspass:1.2.0.05
-
cpe:2.3:a:syspass:syspass:1.2.0.06
-
cpe:2.3:a:syspass:syspass:1.2.0.07
-
cpe:2.3:a:syspass:syspass:1.2.0.08
-
cpe:2.3:a:syspass:syspass:1.2.0.09
-
cpe:2.3:a:syspass:syspass:1.2.0.10
-
cpe:2.3:a:syspass:syspass:1.2.0.11
-
cpe:2.3:a:syspass:syspass:1.2.0.12
-
cpe:2.3:a:syspass:syspass:1.2.0.13
-
cpe:2.3:a:syspass:syspass:1.2.0.14
-
cpe:2.3:a:syspass:syspass:1.2.0.15
-
cpe:2.3:a:syspass:syspass:1.2.0.16
-
cpe:2.3:a:syspass:syspass:1.2.0.17
-
cpe:2.3:a:syspass:syspass:1.2.0.18
-
cpe:2.3:a:syspass:syspass:1.2.0.19
-
cpe:2.3:a:syspass:syspass:1.2.0.20
-
cpe:2.3:a:syspass:syspass:1.2.0.21
-
cpe:2.3:a:syspass:syspass:2.0
-
cpe:2.3:a:syspass:syspass:2.0.0.17011201
-
cpe:2.3:a:syspass:syspass:2.0.0.17011202
-
cpe:2.3:a:syspass:syspass:2.0.0.17011203
-
cpe:2.3:a:syspass:syspass:2.0.0.17011204
-
cpe:2.3:a:syspass:syspass:2.0.0.17011301
-
cpe:2.3:a:syspass:syspass:2.0.0.17011302
-
cpe:2.3:a:syspass:syspass:2.0.0.17011601
-
cpe:2.3:a:syspass:syspass:2.0.0.17011602
-
cpe:2.3:a:syspass:syspass:2.0.0.17011901
-
cpe:2.3:a:syspass:syspass:2.0.0.17012301
-
cpe:2.3:a:syspass:syspass:2.0.0.17012401
-
cpe:2.3:a:syspass:syspass:2.0.0.17012402
-
cpe:2.3:a:syspass:syspass:2.0.0.17012501
-
cpe:2.3:a:syspass:syspass:2.0.0.17012601
-
cpe:2.3:a:syspass:syspass:2.0.0.17012701
-
cpe:2.3:a:syspass:syspass:2.0.0.17013001
-
cpe:2.3:a:syspass:syspass:2.0.0.17020101
-
cpe:2.3:a:syspass:syspass:2.0.0.17020201
-
cpe:2.3:a:syspass:syspass:2.0.0.17021301
-
cpe:2.3:a:syspass:syspass:2.0.0.17021302
-
cpe:2.3:a:syspass:syspass:2.0.0.17021601
-
cpe:2.3:a:syspass:syspass:2.0.1.17010901
-
cpe:2.3:a:syspass:syspass:2.1.0.17022601
-
cpe:2.3:a:syspass:syspass:2.1.0.17030201
-
cpe:2.3:a:syspass:syspass:2.1.1.17030601
-
cpe:2.3:a:syspass:syspass:2.1.10.17053003
-
cpe:2.3:a:syspass:syspass:2.1.11.17061503
-
cpe:2.3:a:syspass:syspass:2.1.12.17080701
-
cpe:2.3:a:syspass:syspass:2.1.13.17083101
-
cpe:2.3:a:syspass:syspass:2.1.14.17090101
-
cpe:2.3:a:syspass:syspass:2.1.15.17101701
-
cpe:2.3:a:syspass:syspass:2.1.16.18061901
-
cpe:2.3:a:syspass:syspass:2.1.2.17031401
-
cpe:2.3:a:syspass:syspass:2.1.3.17031601
-
cpe:2.3:a:syspass:syspass:2.1.4.17032801
-
cpe:2.3:a:syspass:syspass:2.1.5.17041201
-
cpe:2.3:a:syspass:syspass:2.1.6.17041401
-
cpe:2.3:a:syspass:syspass:2.1.7.17042101
-
cpe:2.3:a:syspass:syspass:2.1.8.17042901
-
cpe:2.3:a:syspass:syspass:2.1.9
-
cpe:2.3:a:syspass:syspass:2.1.9.17050401
-
cpe:2.3:a:syspass:syspass:3.0.0.18010101
-
cpe:2.3:a:syspass:syspass:3.0.0.18032301
-
cpe:2.3:a:syspass:syspass:3.0.0.18032401
-
cpe:2.3:a:syspass:syspass:3.0.0.18032701
-
cpe:2.3:a:syspass:syspass:3.0.0.18033001
-
cpe:2.3:a:syspass:syspass:3.0.0.18040302
-
cpe:2.3:a:syspass:syspass:3.0.0.18042501
-
cpe:2.3:a:syspass:syspass:3.0.0.18071101
-
cpe:2.3:a:syspass:syspass:3.0.0.18071601
-
cpe:2.3:a:syspass:syspass:3.0.0.18071602
-
cpe:2.3:a:syspass:syspass:3.0.0.18072101
-
cpe:2.3:a:syspass:syspass:3.0.0.18072501
-
cpe:2.3:a:syspass:syspass:3.0.0.18073101
-
cpe:2.3:a:syspass:syspass:3.0.0.18080601
-
cpe:2.3:a:syspass:syspass:3.0.0.18080701
-
cpe:2.3:a:syspass:syspass:3.0.0.18080901
-
cpe:2.3:a:syspass:syspass:3.0.0.18080902
-
cpe:2.3:a:syspass:syspass:3.0.0.18081001
-
cpe:2.3:a:syspass:syspass:3.0.0.18081002
-
cpe:2.3:a:syspass:syspass:3.0.0.18082701
-
cpe:2.3:a:syspass:syspass:3.0.0.18082801
-
cpe:2.3:a:syspass:syspass:3.0.0.18090201
-
cpe:2.3:a:syspass:syspass:3.0.0.18092402
-
cpe:2.3:a:syspass:syspass:3.0.0.18093001
-
cpe:2.3:a:syspass:syspass:3.0.0.18100801
-
cpe:2.3:a:syspass:syspass:3.0.0.18110201
-
cpe:2.3:a:syspass:syspass:3.0.0.18110503
-
cpe:2.3:a:syspass:syspass:3.0.0.18110601
-
cpe:2.3:a:syspass:syspass:3.0.0.18111702
-
cpe:2.3:a:syspass:syspass:3.0.0.18111901
-
cpe:2.3:a:syspass:syspass:3.0.0.18112501
-
cpe:2.3:a:syspass:syspass:3.0.0.18112601
-
cpe:2.3:a:syspass:syspass:3.0.0.18121601
-
cpe:2.3:a:syspass:syspass:3.0.0.18122201
-
cpe:2.3:a:syspass:syspass:3.0.0.18122601
-
cpe:2.3:a:syspass:syspass:3.0.0.18126201
-
cpe:2.3:a:syspass:syspass:3.0.1
-
cpe:2.3:a:syspass:syspass:3.0.1.19012002
-
cpe:2.3:a:syspass:syspass:3.0.2.19012401
-
cpe:2.3:a:syspass:syspass:3.0.3.19012402
-
cpe:2.3:a:syspass:syspass:3.0.4.19012601
-
cpe:2.3:a:syspass:syspass:3.0.5.19020701
-
cpe:2.3:a:syspass:syspass:3.1.0.19042801
-
cpe:2.3:a:syspass:syspass:3.1.0.19043001
-
cpe:2.3:a:syspass:syspass:3.1.0.19052502
-
cpe:2.3:a:syspass:syspass:3.1.0.19052503
-
cpe:2.3:a:syspass:syspass:3.1.0.19072001
-
cpe:2.3:a:syspass:syspass:3.1.0.19081801
-
cpe:2.3:a:syspass:syspass:3.2.0
-
cpe:2.3:a:syspass:syspass:3.2.1
-
cpe:2.3:a:syspass:syspass:3.2.2
-
cpe:2.3:a:syspass:syspass:3.2.3
-
cpe:2.3:a:syspass:syspass:3.2.4