9.8
CVE-2022-46383
- EPSS 0.53%
- Veröffentlicht 06.12.2022 15:15:15
- Zuletzt bearbeitet 23.04.2025 17:16:23
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginRackN Digital Rebar through 4.6.14, 4.7 through 4.7.22, 4.8 through 4.8.5, 4.9 through 4.9.12, and 4.10 through 4.10.8 has exposed a privileged token via a public API endpoint (Incorrect Access Control). The token can be used to escalate privileges within the Digital Rebar system and grant full administrative access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Rackn ≫ Digital Rebar Version <= 4.6.14
Rackn ≫ Digital Rebar Version >= 4.7 <= 4.7.22
Rackn ≫ Digital Rebar Version >= 4.8 <= 4.8.5
Rackn ≫ Digital Rebar Version >= 4.9 <= 4.9.12
Rackn ≫ Digital Rebar Version >= 4.10 <= 4.10.8
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.53% | 0.664 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|