CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Mitre: >> Caldera >> 3.1.0 Security Vulnerabilities

CVE-2022-40606

MITRE CALDERA before 4.1.0 allows XSS in the Operations tab and/or Debrief plugin via a crafted operation name, a different vulnerability than CVE-2022-40605.

CVSS Score

6.1

EPSS Score

0.001

Published

2022-10-17

CVE-2022-40605

MITRE CALDERA before 4.1.0 allows XSS in the Operations tab and/or Debrief plugin via a crafted operation name, a different vulnerability than CVE-2022-40606.

CVSS Score

6.1

EPSS Score

0.001

Published

2022-10-17

CVE-2022-41139

MITRE CALDERA 4.1.0 allows stored XSS via app.contact.gist (aka the gist contact configuration field), leading to execution of arbitrary commands on agents.

CVSS Score

5.4

EPSS Score

0.001

Published

2022-10-17

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved