var-202204-1280
Vulnerability from variot
Connected Components Workbench (v13.00.00 and prior), ISaGRAF Workbench (v6.0 though v6.6.9), and Safety Instrumented System Workstation (v1.2 and prior (for Trusted Controllers)) do not limit the objects that can be deserialized. This allows attackers to craft a malicious serialized object that, if opened by a local user in Connected Components Workbench, may result in arbitrary code execution. This vulnerability requires user interaction to be successfully exploited. Rockwell Automation Provided by ISaGRAF Deserialization of untrusted data ( CWE-502 , CVE-2022-1118 ) Is vulnerable.By opening a specially crafted, malicious file, an attacker may be able to execute arbitrary code. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the handling of CCWARC files. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of the current process
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-202204-1280",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "connected components workbench",
"scope": null,
"trust": 3.6,
"vendor": "rockwell automation",
"version": null
},
{
"model": "isagraf workbench",
"scope": "lte",
"trust": 1.0,
"vendor": "rockwellautomation",
"version": "6.6.9"
},
{
"model": "isagraf workbench",
"scope": "gte",
"trust": 1.0,
"vendor": "rockwellautomation",
"version": "6.0"
},
{
"model": "connected component workbench",
"scope": "lte",
"trust": 1.0,
"vendor": "rockwellautomation",
"version": "13.00.00"
},
{
"model": "safety instrumented systems workstation",
"scope": "lte",
"trust": 1.0,
"vendor": "rockwellautomation",
"version": "1.2"
},
{
"model": "isagraf workbench",
"scope": null,
"trust": 0.8,
"vendor": "rockwell automation",
"version": null
},
{
"model": "safety instrumented systems workstation",
"scope": "lte",
"trust": 0.8,
"vendor": "rockwell automation",
"version": "v1.2 and earlier (trusted controller for )"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-22-589"
},
{
"db": "ZDI",
"id": "ZDI-22-588"
},
{
"db": "ZDI",
"id": "ZDI-22-587"
},
{
"db": "ZDI",
"id": "ZDI-22-586"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-001527"
},
{
"db": "NVD",
"id": "CVE-2022-1118"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "kimiya",
"sources": [
{
"db": "ZDI",
"id": "ZDI-22-589"
},
{
"db": "ZDI",
"id": "ZDI-22-588"
},
{
"db": "ZDI",
"id": "ZDI-22-587"
},
{
"db": "ZDI",
"id": "ZDI-22-586"
}
],
"trust": 2.8
},
"cve": "CVE-2022-1118",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "CVE-2022-1118",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 1.9,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "VHN-418892",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "ZDI",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.8,
"id": "CVE-2022-1118",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 2.8,
"userInteraction": "REQUIRED",
"vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.8,
"id": "CVE-2022-1118",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "ics-cert@hq.dhs.gov",
"availabilityImpact": "HIGH",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.8,
"id": "CVE-2022-1118",
"impactScore": 6.0,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"trust": 1.0,
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Local",
"author": "OTHER",
"availabilityImpact": "High",
"baseScore": 8.6,
"baseSeverity": "High",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "JVNDB-2022-001527",
"impactScore": null,
"integrityImpact": "High",
"privilegesRequired": "None",
"scope": "Changed",
"trust": 0.8,
"userInteraction": "Required",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "ZDI",
"id": "CVE-2022-1118",
"trust": 2.8,
"value": "HIGH"
},
{
"author": "nvd@nist.gov",
"id": "CVE-2022-1118",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "ics-cert@hq.dhs.gov",
"id": "CVE-2022-1118",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2022-1118",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-202204-2525",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-418892",
"trust": 0.1,
"value": "MEDIUM"
},
{
"author": "VULMON",
"id": "CVE-2022-1118",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-22-589"
},
{
"db": "ZDI",
"id": "ZDI-22-588"
},
{
"db": "ZDI",
"id": "ZDI-22-587"
},
{
"db": "ZDI",
"id": "ZDI-22-586"
},
{
"db": "VULHUB",
"id": "VHN-418892"
},
{
"db": "VULMON",
"id": "CVE-2022-1118"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-001527"
},
{
"db": "CNNVD",
"id": "CNNVD-202204-2525"
},
{
"db": "NVD",
"id": "CVE-2022-1118"
},
{
"db": "NVD",
"id": "CVE-2022-1118"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Connected Components Workbench (v13.00.00 and prior), ISaGRAF Workbench (v6.0 though v6.6.9), and Safety Instrumented System Workstation (v1.2 and prior (for Trusted Controllers)) do not limit the objects that can be deserialized. This allows attackers to craft a malicious serialized object that, if opened by a local user in Connected Components Workbench, may result in arbitrary code execution. This vulnerability requires user interaction to be successfully exploited. Rockwell Automation Provided by ISaGRAF Deserialization of untrusted data ( CWE-502 , CVE-2022-1118 ) Is vulnerable.By opening a specially crafted, malicious file, an attacker may be able to execute arbitrary code. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the handling of CCWARC files. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of the current process",
"sources": [
{
"db": "NVD",
"id": "CVE-2022-1118"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-001527"
},
{
"db": "ZDI",
"id": "ZDI-22-589"
},
{
"db": "ZDI",
"id": "ZDI-22-588"
},
{
"db": "ZDI",
"id": "ZDI-22-587"
},
{
"db": "ZDI",
"id": "ZDI-22-586"
},
{
"db": "VULHUB",
"id": "VHN-418892"
},
{
"db": "VULMON",
"id": "CVE-2022-1118"
}
],
"trust": 4.32
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2022-1118",
"trust": 6.2
},
{
"db": "ICS CERT",
"id": "ICSA-22-095-01",
"trust": 2.6
},
{
"db": "ZDI",
"id": "ZDI-22-589",
"trust": 1.4
},
{
"db": "JVN",
"id": "JVNVU99485677",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2022-001527",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-15176",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-15175",
"trust": 0.7
},
{
"db": "ZDI",
"id": "ZDI-22-588",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-15174",
"trust": 0.7
},
{
"db": "ZDI",
"id": "ZDI-22-587",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-15173",
"trust": 0.7
},
{
"db": "ZDI",
"id": "ZDI-22-586",
"trust": 0.7
},
{
"db": "CS-HELP",
"id": "SB2022040601",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-202204-2525",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-418892",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2022-1118",
"trust": 0.1
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-22-589"
},
{
"db": "ZDI",
"id": "ZDI-22-588"
},
{
"db": "ZDI",
"id": "ZDI-22-587"
},
{
"db": "ZDI",
"id": "ZDI-22-586"
},
{
"db": "VULHUB",
"id": "VHN-418892"
},
{
"db": "VULMON",
"id": "CVE-2022-1118"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-001527"
},
{
"db": "CNNVD",
"id": "CNNVD-202204-2525"
},
{
"db": "NVD",
"id": "CVE-2022-1118"
}
]
},
"id": "VAR-202204-1280",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-418892"
}
],
"trust": 0.58214287
},
"last_update_date": "2024-11-23T22:29:01.209000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Rockwell Automation has issued an update to correct this vulnerability.",
"trust": 2.8,
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-095-01"
},
{
"title": "Connected\u00a0Components\u00a0Workbench\u00a020.00.00 Rockwell\u00a0Automation",
"trust": 0.8,
"url": "https://compatibility.rockwellautomation.com/Pages/MultiProductFindDownloads.aspx?crumb=112\u0026mode=3\u0026refSoft=1\u0026versions=59954"
},
{
"title": "Rockwell Automation Connected Components Workbench Fixes for code issue vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=198460"
},
{
"title": "cve-2022-1118",
"trust": 0.1,
"url": "https://github.com/git-cve-updater/cve-2022-1118 "
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-22-589"
},
{
"db": "ZDI",
"id": "ZDI-22-588"
},
{
"db": "ZDI",
"id": "ZDI-22-587"
},
{
"db": "ZDI",
"id": "ZDI-22-586"
},
{
"db": "VULMON",
"id": "CVE-2022-1118"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-001527"
},
{
"db": "CNNVD",
"id": "CNNVD-202204-2525"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-502",
"trust": 1.1
},
{
"problemtype": "Deserialization of untrusted data (CWE-502) [ others ]",
"trust": 0.8
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-418892"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-001527"
},
{
"db": "NVD",
"id": "CVE-2022-1118"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 5.5,
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-095-01"
},
{
"trust": 0.8,
"url": "https://jvn.jp/vu/jvnvu99485677/"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2022-1118"
},
{
"trust": 0.7,
"url": "https://www.zerodayinitiative.com/advisories/zdi-22-589/"
},
{
"trust": 0.6,
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-095-01"
},
{
"trust": 0.6,
"url": "https://cxsecurity.com/cveshow/cve-2022-1118/"
},
{
"trust": 0.6,
"url": "https://www.cybersecurity-help.cz/vdb/sb2022040601"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/502.html"
},
{
"trust": 0.1,
"url": "https://github.com/git-cve-updater/cve-2022-1118"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-22-589"
},
{
"db": "ZDI",
"id": "ZDI-22-588"
},
{
"db": "ZDI",
"id": "ZDI-22-587"
},
{
"db": "ZDI",
"id": "ZDI-22-586"
},
{
"db": "VULHUB",
"id": "VHN-418892"
},
{
"db": "VULMON",
"id": "CVE-2022-1118"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-001527"
},
{
"db": "CNNVD",
"id": "CNNVD-202204-2525"
},
{
"db": "NVD",
"id": "CVE-2022-1118"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "ZDI",
"id": "ZDI-22-589"
},
{
"db": "ZDI",
"id": "ZDI-22-588"
},
{
"db": "ZDI",
"id": "ZDI-22-587"
},
{
"db": "ZDI",
"id": "ZDI-22-586"
},
{
"db": "VULHUB",
"id": "VHN-418892"
},
{
"db": "VULMON",
"id": "CVE-2022-1118"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-001527"
},
{
"db": "CNNVD",
"id": "CNNVD-202204-2525"
},
{
"db": "NVD",
"id": "CVE-2022-1118"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2022-04-08T00:00:00",
"db": "ZDI",
"id": "ZDI-22-589"
},
{
"date": "2022-04-08T00:00:00",
"db": "ZDI",
"id": "ZDI-22-588"
},
{
"date": "2022-04-08T00:00:00",
"db": "ZDI",
"id": "ZDI-22-587"
},
{
"date": "2022-04-08T00:00:00",
"db": "ZDI",
"id": "ZDI-22-586"
},
{
"date": "2022-05-17T00:00:00",
"db": "VULHUB",
"id": "VHN-418892"
},
{
"date": "2022-05-17T00:00:00",
"db": "VULMON",
"id": "CVE-2022-1118"
},
{
"date": "2022-04-07T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2022-001527"
},
{
"date": "2022-04-05T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202204-2525"
},
{
"date": "2022-05-17T20:15:08.173000",
"db": "NVD",
"id": "CVE-2022-1118"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2022-04-08T00:00:00",
"db": "ZDI",
"id": "ZDI-22-589"
},
{
"date": "2022-04-08T00:00:00",
"db": "ZDI",
"id": "ZDI-22-588"
},
{
"date": "2022-04-08T00:00:00",
"db": "ZDI",
"id": "ZDI-22-587"
},
{
"date": "2022-04-08T00:00:00",
"db": "ZDI",
"id": "ZDI-22-586"
},
{
"date": "2022-05-26T00:00:00",
"db": "VULHUB",
"id": "VHN-418892"
},
{
"date": "2022-05-26T00:00:00",
"db": "VULMON",
"id": "CVE-2022-1118"
},
{
"date": "2024-06-18T08:48:00",
"db": "JVNDB",
"id": "JVNDB-2022-001527"
},
{
"date": "2022-07-01T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202204-2525"
},
{
"date": "2024-11-21T06:40:05.017000",
"db": "NVD",
"id": "CVE-2022-1118"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202204-2525"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Rockwell Automation Connected Components Workbench CCWARC File Parsing Deserialization Of Untrusted Data Remote Code Execution Vulnerability",
"sources": [
{
"db": "ZDI",
"id": "ZDI-22-589"
},
{
"db": "ZDI",
"id": "ZDI-22-588"
},
{
"db": "ZDI",
"id": "ZDI-22-587"
},
{
"db": "ZDI",
"id": "ZDI-22-586"
}
],
"trust": 2.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "code problem",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202204-2525"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…