VDB

CVE-2022-1415

CVE-2022-1415 PUBLISHED CVSS 8.800000190734863 HIGH

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

EPSS 1.00% · 77.4th percentile

Risk Scores

CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
1.00%
77.4th percentile

Affected Products

VendorProductVersions
Red HatRed Hat build of Quarkus
Mavenorg.drools:drools-core0, 0, 0
Red HatRed Hat JBoss Data Grid 7
Red HatRed Hat JBoss Data Virtualization 6
Red HatRed Hat Process Automation 7
Red HatRed Hat JBoss Enterprise Application Platform 6
Red HatRed Hat JBoss Fuse Service Works 6
Red HatRed Hat build of Apache Camel for Spring Boot
Red HatRed Hat Decision Manager 7
Red HatRed Hat JBoss Enterprise Application Platform Expansion Pack
Red HatRed Hat JBoss Enterprise Application Platform 7
Red HatRHPAM 7.13.1 async
Red HatRed Hat JBoss Fuse 6
Mavenorg.drools:drools
Red HatRed Hat JBoss Fuse 7
Red HatRed Hat Integration Camel K
Red HatRed Hat Integration Camel Quarkus

Timeline

  • Sep 11, 2023 CVE Published
  • Sep 12, 2023 EPSS Score
  • Oct 14, 2023 EPSS Score
  • Nov 16, 2023 EPSS Score
  • Jan 20, 2024 EPSS Score
  • Feb 21, 2024 EPSS Score
  • Mar 25, 2024 EPSS Score
  • Apr 26, 2024 EPSS Score
  • May 3, 2024 CVE Updated
  • May 29, 2024 EPSS Score
  • Jun 30, 2024 EPSS Score
  • Sep 3, 2024 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›