CVE-2022-25370
Published at:
-
02-09-2022 09:15
Last modified:
-
07-09-2022 10:46
Total changes:
-
3
Description
Common Vulnerability Scoring System (CVSS)
Low
Attack complexity
Network
Attack vector
None
Availability
Low
Confidentiality
Low
Integrity
Low
Privileges required
Changed
Scope
Required
User interaction
5.4
Base score
2.3
2.7
Exploitability score
Impact score
Verification logic
Reference
- N/A-Issue Tracking, Mailing List, Vendor Advisory
- [oss-security] 20220902 Apache OFBiz - Unauth Stored XSS (CVE-2022-25370)-Mailing List, Third Party Advisory
- [oss-security] 20220903 Re: Apache OFBiz - Unauth Path Traversal with file corruption (CVE-2022-25371)-Mailing List, Third Party Advisory
Keywords