Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2022-44593

June 21, 2024, 7:15 p.m.

Tags

audit@patchstack.com
CWE-348
2024-06-21
CVE-2022-44593

CVSS Score

3.7 / 10

Product(s) Impacted

SolidWP Solid Security

  • n/a - 9.3.1

Description

Use of Less Trusted Source vulnerability in SolidWP Solid Security allows HTTP DoS.This issue affects Solid Security: from n/a through 9.3.1.

Weaknesses

CWE-348
Use of Less Trusted Source

The product has two different sources of the same data or information, but it uses the source that has less support for verification, is less trusted, or is less resistant to attack.

CWE ID: 348

Date

Published: June 21, 2024, 4:15 p.m.

Last Modified: June 21, 2024, 7:15 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

audit@patchstack.com

CVSS Data

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

Base Score
3.7
Exploitability Score
2.2
Impact Score
1.4
Base Severity
LOW
CVSS Vector String

The CVSS vector string provides an in-depth view of the vulnerability metrics.

View Vector String

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

References

https://patchstack.com/ audit@patchstack.com