6.5
CVE-2022-24110
- EPSS 0.82%
- Veröffentlicht 14.02.2022 12:15:27
- Zuletzt bearbeitet 21.11.2024 06:49:49
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginKiteworks MFT 7.5 may allow an unauthorized user to reset other users' passwords. This is fixed in version 7.6 and later.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Accellion ≫ Managed File Transfer Version < 7.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.82% | 0.525 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 2.8 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
|
| nvd@nist.gov | 4 | 8 | 2.9 |
AV:N/AC:L/Au:S/C:N/I:P/A:N
|
https://github.com/accellion/CVEs/blob/main/CVE-2022-24110.txt
https://www.kiteworks.com/platform/simple/managed-file-transfer/