← back
CVE-2022-43550

CVE-2022-43550

CVSS 9.8 CRITICALEPSS 1.8%CWE-78
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.8EPSS 1.8%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
09 Feb 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A command injection vulnerability exists in Jitsi before commit 8aa7be58522f4264078d54752aae5483bfd854b2 when launching browsers on Windows which could allow an attacker to insert an arbitrary URL which opens up the opportunity to remote execution.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H