CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-50689

Cobian Reflector 0.9.93 RC1 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the password input field. Attackers can paste a large 8000-byte buffer into the password field to trigger an application crash during SFTP task configuration.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.8%

CVSS Severity

CVSS v3 Score 6.2

References

https://www.cobiansoft.com/
https://www.exploit-db.com/exploits/50789
https://www.vulncheck.com/advisories/cobian-reflector-rc-local-denial-of-service-via-password-field
https://www.exploit-db.com/exploits/50789

Products affected by CVE-2022-50689

Cobiansoft » Reflector » Version: 0.9.93

cpe:2.3:a:cobiansoft:reflector:0.9.93

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-50689

Products

Pricing

Contact Us