VDB
CVE-2022-24773
CVE-2022-24773
PUBLISHED
CVSS 8.699999809265137 HIGH
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift Service Mesh ausnutzen, um Dateien zu manipulieren, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuführen.
EPSS 0.13% · 32.4th percentile
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.13%
32.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Splunk | Splunk Splunk Enterprise <9.4.4 | |
| Splunk | Splunk Splunk Enterprise <9.3.6 | |
| SUSE | SUSE Linux | |
| Atlassian | Atlassian Bitbucket <10.0.2 | |
| Splunk | Splunk Splunk Enterprise <10.0.1 | |
| Red Hat | Red Hat OpenShift Service Mesh <2.1.2.1 | |
| IBM | IBM App Connect Enterprise | |
| Red Hat | Red Hat Enterprise Linux | |
| IBM | IBM Sterling Connect:Direct Web Services | |
| Red Hat | Red Hat OpenShift Data Foundation <4.18 | |
| Atlassian | Atlassian Bitbucket <8.19.25 (LTS) | |
| Atlassian | Atlassian Bitbucket <9.4.13 (LTS) | |
| Splunk | Splunk Splunk Enterprise <9.2.8 | |
| Red Hat | Red Hat OpenShift Data Foundation <4.19 |
Timeline
- Oct 6, 2021 PoC Published
- Mar 18, 2022 CVE Published
- Mar 19, 2022 EPSS Score
- Mar 22, 2022 CVE Updated
- Apr 7, 2022 PoC Published
- May 9, 2022 EPSS Score
- Jun 29, 2022 EPSS Score
- Aug 20, 2022 EPSS Score
- Oct 10, 2022 EPSS Score
- Nov 30, 2022 EPSS Score
- Jan 20, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0417.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0417 advisory
- https://access.redhat.com/errata/RHSA-2022:1739 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-June/011319.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-June/011320.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-June/011321.html advisory
- https://access.redhat.com/errata/RHSA-2022:5392 advisory
- https://access.redhat.com/errata/RHSA-2022:5069 advisory
- https://access.redhat.com/errata/RHSA-2022:6156 advisory
- https://access.redhat.com/errata/RHSA-2022:6813 advisory
- https://access.redhat.com/errata/RHSA-2022:6835 advisory
- https://access.redhat.com/errata/RHSA-2022:8652 advisory
- https://access.redhat.com/errata/RHSA-2023:0612 advisory
- https://access.redhat.com/errata/RHSA-2023:1043 advisory
- https://access.redhat.com/errata/RHSA-2023:1049 advisory
- https://access.redhat.com/errata/RHSA-2023:1044 advisory
- https://access.redhat.com/errata/RHSA-2023:1047 advisory
- https://access.redhat.com/errata/RHSA-2023:1045 advisory
- https://access.redhat.com/errata/RHSA-2023:1742 advisory
- https://advisory.splunk.com//advisories/SVD-2025-1007 advisory
…and 10 more