← back
CVE-2022-0571

Cross-site Scripting (XSS) - Reflected in phoronix-test-suite/phoronix-test-suite

CVSS 6.8 MEDIUMEPSS 1.3%CWE-79
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.8EPSS 1.3%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
13 Feb 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Cross-site Scripting (XSS) - Reflected in GitHub repository phoronix-test-suite/phoronix-test-suite prior to 10.8.2.
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H
Affected products
phoronix-test-suite · phoronix-test-suite/phoronix-test-suite

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/phoronix-test-suite/phoronix-test-suite/commit/1eac9260c8313f0cfc77837ec676f4e6d68bd833https://huntr.dev/bounties/a5039485-6e48-4313-98ad-915506c19ae8https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSQH5OWXAMWSM7H6VSBRDGTOE7UIOZHZ/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PQ2PBBODEOE3BUCYHL5CV47M72ST4I7S/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QO32MBF3FS65K5YIC6CHXAJTLLPAXJED/