← back
CVE-2022-21142

CVE-2022-21142

EPSS 1.5%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 1.5%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
24 Feb 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Authentication bypass vulnerability in a-blog cms Ver.2.8.x series versions prior to Ver.2.8.74, Ver.2.9.x series versions prior to Ver.2.9.39, Ver.2.10.x series versions prior to Ver.2.10.43, and Ver.2.11.x series versions prior to Ver.2.11.41 allows a remote unauthenticated attacker to bypass authentication under the specific condition.
Affected products
appleple inc. · a-blog cms

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://developer.a-blogcms.jp/blog/news/security-202202.htmlhttps://jvn.jp/en/jp/JVN14706307/index.html