FKIE_CVE-2022-32320
Vulnerability from fkie_nvd - Published: 2022-07-17 17:15 - Updated: 2024-11-21 07:06
Severity
Summary
A Cross-Site Request Forgery (CSRF) in Ferdi through 5.8.1 and Ferdium through 6.0.0-nightly.98 allows attackers to read files via an uploaded file such as a settings/preferences file.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | https://getferdi.com/ | Product | |
| cve@mitre.org | https://gist.github.com/omriinbar-cyesec/c1179fe99725d2b828b6573c0d110c9c | Third Party Advisory | |
| cve@mitre.org | https://github.com/getferdi/ferdi | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://getferdi.com/ | Product | |
| af854a3a-2127-422b-91ae-364da2661108 | https://gist.github.com/omriinbar-cyesec/c1179fe99725d2b828b6573c0d110c9c | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/getferdi/ferdi | Third Party Advisory |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:-:*:*:*:*:*:*",
"matchCriteriaId": "BD953D31-DD80-4ED8-A142-A61473C62442",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:beta1:*:*:*:*:*:*",
"matchCriteriaId": "3D1F4F65-F098-4903-979F-C4559DC3C00E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:beta2:*:*:*:*:*:*",
"matchCriteriaId": "ABAE6347-ADB6-47C8-B3C0-87F4D30FBDE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:beta3:*:*:*:*:*:*",
"matchCriteriaId": "0B66863E-B4CA-43A4-AE4B-AAD8AD33A83C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly1:*:*:*:*:*:*",
"matchCriteriaId": "BADE1A68-D2FE-433E-91E3-60A991AD6FB2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly10:*:*:*:*:*:*",
"matchCriteriaId": "4923CEDA-FFF8-48BA-9CD0-CCFB201D65AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly11:*:*:*:*:*:*",
"matchCriteriaId": "FFDE2E25-21EE-49D6-B6F9-6B4EEB9E5F73",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly12:*:*:*:*:*:*",
"matchCriteriaId": "61CBD365-CB95-4FAA-872A-550F9ECFE172",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly13:*:*:*:*:*:*",
"matchCriteriaId": "66CAB0E5-7687-480C-993D-261C1A519D89",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly14:*:*:*:*:*:*",
"matchCriteriaId": "1C572FCA-936D-4956-8475-F9EF8A4D75CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly15:*:*:*:*:*:*",
"matchCriteriaId": "7315EF9F-3575-460C-813A-83D27EB5D375",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly16:*:*:*:*:*:*",
"matchCriteriaId": "AE0FA9FD-54B9-4072-B82C-70B1A6E893C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly17:*:*:*:*:*:*",
"matchCriteriaId": "9015999F-A8B5-4003-9307-3A299277B684",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly18:*:*:*:*:*:*",
"matchCriteriaId": "A4127DB7-5336-464F-A2C5-760966649E52",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly19:*:*:*:*:*:*",
"matchCriteriaId": "D735F091-A953-446F-80AE-0FD248E66CF1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly2:*:*:*:*:*:*",
"matchCriteriaId": "8437DB24-F418-40FB-9157-329B6405DAF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly20:*:*:*:*:*:*",
"matchCriteriaId": "1449DC1E-7ECF-43A0-9ACE-8955FAB98326",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly21:*:*:*:*:*:*",
"matchCriteriaId": "37C329FB-A93B-41DF-B219-B28F24507C97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly22:*:*:*:*:*:*",
"matchCriteriaId": "8C70D159-DA98-44F5-B6FA-135D8953E1CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly23:*:*:*:*:*:*",
"matchCriteriaId": "03BDA207-974D-47A4-88C8-F001FD0CB0C1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly24:*:*:*:*:*:*",
"matchCriteriaId": "90D72083-A105-4A8A-8E05-AEB19E25C663",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly25:*:*:*:*:*:*",
"matchCriteriaId": "31A53350-13C5-4DDA-BB21-B83D1FB61F95",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly26:*:*:*:*:*:*",
"matchCriteriaId": "6304D018-BA86-4951-9026-1F27380AE264",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly27:*:*:*:*:*:*",
"matchCriteriaId": "5889C356-11C7-4123-901A-7B05DD46BDB8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly28:*:*:*:*:*:*",
"matchCriteriaId": "5F6B5479-EAD9-4311-9D2A-B71AF87F62BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly29:*:*:*:*:*:*",
"matchCriteriaId": "5BBCDB5C-A54D-4209-BF98-19E265EEBD64",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly3:*:*:*:*:*:*",
"matchCriteriaId": "1E2C1C86-2C0D-4530-BD1D-BEF315B97D80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly30:*:*:*:*:*:*",
"matchCriteriaId": "76AC55F9-D749-4154-A05B-9F35BDD3D093",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly31:*:*:*:*:*:*",
"matchCriteriaId": "A62E7E8A-C2C5-4252-AE40-11283C5757DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly32:*:*:*:*:*:*",
"matchCriteriaId": "72685EB6-65F8-4804-B242-8463340E6D1F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly33:*:*:*:*:*:*",
"matchCriteriaId": "D0493140-9ACE-4970-AC3F-5A4F4DE5745C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly34:*:*:*:*:*:*",
"matchCriteriaId": "8E46F575-ECD6-4776-9EFD-751A6BB157FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly35:*:*:*:*:*:*",
"matchCriteriaId": "0DA01498-0E0C-4639-B17B-985ABFE1D059",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly36:*:*:*:*:*:*",
"matchCriteriaId": "F09592F9-1141-44FE-AD58-3BC772262A10",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly37:*:*:*:*:*:*",
"matchCriteriaId": "BFE5718E-D5B6-4302-ABA2-E23EBB175470",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly38:*:*:*:*:*:*",
"matchCriteriaId": "F03A9BFE-A551-4749-9969-066A11CFA3D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly39:*:*:*:*:*:*",
"matchCriteriaId": "2AD4C5A1-B21A-416E-B111-64E6163692DC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly4:*:*:*:*:*:*",
"matchCriteriaId": "BF7548DC-6134-4C7F-AAE0-8CC1AF489303",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly40:*:*:*:*:*:*",
"matchCriteriaId": "FB67BAD3-3092-4195-AD34-C648EFA1B2B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly41:*:*:*:*:*:*",
"matchCriteriaId": "22341934-4D22-4ED2-B99F-6EAA5BDE9D22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly42:*:*:*:*:*:*",
"matchCriteriaId": "E0B86CE4-8792-4442-84E7-0741F7C593E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly43:*:*:*:*:*:*",
"matchCriteriaId": "71B6AC59-8F95-47C4-9D0F-AAD820A6CE50",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly44:*:*:*:*:*:*",
"matchCriteriaId": "FC01CC79-BF42-441B-B5A1-FD8A0451B83F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly45:*:*:*:*:*:*",
"matchCriteriaId": "D8021E36-63A5-4E48-B247-59EE58E5A225",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly46:*:*:*:*:*:*",
"matchCriteriaId": "6D5E13BB-EE1A-43D5-A750-8AB3250B143C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly47:*:*:*:*:*:*",
"matchCriteriaId": "02A4266C-58B7-411F-BA92-0D62D078B352",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly48:*:*:*:*:*:*",
"matchCriteriaId": "EC147712-BCF9-4D2D-820B-2CE41DDA0469",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly49:*:*:*:*:*:*",
"matchCriteriaId": "F5E0630A-EF5D-4A82-B692-FE6FA4B9D348",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly5:*:*:*:*:*:*",
"matchCriteriaId": "887D31F2-DCEF-46A2-A126-10BB2A95BC10",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly50:*:*:*:*:*:*",
"matchCriteriaId": "9164DC4B-DDB1-4AE5-AEF4-D309A2826C4E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly51:*:*:*:*:*:*",
"matchCriteriaId": "B5537D44-46CC-491A-A5EE-8E7A4150A1CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly52:*:*:*:*:*:*",
"matchCriteriaId": "BE08932B-0C44-4B0B-956D-82FDE53FFD3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly53:*:*:*:*:*:*",
"matchCriteriaId": "9F5B1AAA-97BD-44B5-BFBB-12052A5706B4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly54:*:*:*:*:*:*",
"matchCriteriaId": "F1E275EF-8533-429D-996C-B5B98734CD09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly55:*:*:*:*:*:*",
"matchCriteriaId": "E8F57FC1-B090-4A91-BD5A-1DA9A7CB792C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly56:*:*:*:*:*:*",
"matchCriteriaId": "7230A284-5BDC-408F-9C5C-344BB1A0F215",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly57:*:*:*:*:*:*",
"matchCriteriaId": "33AF4A27-11A3-430A-8FE7-285D26CD6101",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly58:*:*:*:*:*:*",
"matchCriteriaId": "244A3E2E-56FC-418B-A6D8-8A2C41FC78B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly59:*:*:*:*:*:*",
"matchCriteriaId": "8E9DE10F-6AD0-4766-8E89-C03C796AD0B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly6:*:*:*:*:*:*",
"matchCriteriaId": "2759F81F-679A-471E-8E02-4CB6ACB9C0F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly60:*:*:*:*:*:*",
"matchCriteriaId": "0896BDC5-5EB2-452D-B748-A28D0344176E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly61:*:*:*:*:*:*",
"matchCriteriaId": "76FF50CB-10F5-4532-BF6E-4C2C411B5E93",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly62:*:*:*:*:*:*",
"matchCriteriaId": "235087F4-7D7F-4755-94B2-BBC578236180",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly63:*:*:*:*:*:*",
"matchCriteriaId": "0D33231C-1DB2-43B9-A626-D5157C83E8D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly65:*:*:*:*:*:*",
"matchCriteriaId": "F6CCC963-F7F4-4556-9BDB-6C80B9031764",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly66:*:*:*:*:*:*",
"matchCriteriaId": "90B7FA3E-8A04-41D0-B732-8CCEF340C6BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly67:*:*:*:*:*:*",
"matchCriteriaId": "A6AE7C68-251B-4894-92BC-DD1EE3930524",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly69:*:*:*:*:*:*",
"matchCriteriaId": "78FE624A-24B1-480E-8547-5B425A9DC766",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly7:*:*:*:*:*:*",
"matchCriteriaId": "6487A95E-FB08-4412-BFF4-94F7452B6A05",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly70:*:*:*:*:*:*",
"matchCriteriaId": "E55BB281-5F43-493A-BC4E-9AE22A614A37",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly71:*:*:*:*:*:*",
"matchCriteriaId": "B38B65F2-D254-4464-BDAA-DCE12457BC89",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly72:*:*:*:*:*:*",
"matchCriteriaId": "9A0B0E32-7F42-431C-92BE-28FBB1638747",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly73:*:*:*:*:*:*",
"matchCriteriaId": "49367432-3C81-4EE4-AC46-131197E038D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly74:*:*:*:*:*:*",
"matchCriteriaId": "F7EDE374-F6F2-45F4-A84B-E18CFC1046D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly76:*:*:*:*:*:*",
"matchCriteriaId": "172EF3B3-380A-4F27-A710-2531401EBEEA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly77:*:*:*:*:*:*",
"matchCriteriaId": "59B40A3B-7E63-4F0D-9411-BA9C3445B3BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly78:*:*:*:*:*:*",
"matchCriteriaId": "488DF7CD-9504-4D47-983B-3E93EE98902D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly79:*:*:*:*:*:*",
"matchCriteriaId": "856544BE-0D71-45C2-9BB5-C6350D76F8BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly8:*:*:*:*:*:*",
"matchCriteriaId": "2318F570-B637-4FE1-9331-7AE65DB4BFC8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly80:*:*:*:*:*:*",
"matchCriteriaId": "F7B85E44-136C-4D23-ABD1-97BE938C9858",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly81:*:*:*:*:*:*",
"matchCriteriaId": "48099DC2-1FC3-4001-903D-4F215929115B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly82:*:*:*:*:*:*",
"matchCriteriaId": "681B9A2D-8E3B-4D07-9C48-2471CE773715",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly83:*:*:*:*:*:*",
"matchCriteriaId": "5AC9D7FF-A38B-4534-88A4-4895D6DB9712",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly84:*:*:*:*:*:*",
"matchCriteriaId": "B7D5FA42-9DB3-4F3D-8E1E-75D46736A36A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly85:*:*:*:*:*:*",
"matchCriteriaId": "09D9D57D-1F12-42EB-AAD7-87EE9BEA84A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly86:*:*:*:*:*:*",
"matchCriteriaId": "DE6E0A68-D153-424B-B865-42816F5F3B1F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly87:*:*:*:*:*:*",
"matchCriteriaId": "2722D65E-A195-47E0-A938-9C9D23F4AAB0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly88:*:*:*:*:*:*",
"matchCriteriaId": "46F2C80F-ED94-4BE1-917F-EA4694BB5CC7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly89:*:*:*:*:*:*",
"matchCriteriaId": "39506F16-F3FA-4779-A3CF-8C41B190E353",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly9:*:*:*:*:*:*",
"matchCriteriaId": "9D2DC82F-764B-448F-BCB4-D1A646D001AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly90:*:*:*:*:*:*",
"matchCriteriaId": "E6CF2F78-7B72-432D-BBF8-E47B89C64BE7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly91:*:*:*:*:*:*",
"matchCriteriaId": "53C81FC1-1483-40EF-8057-295A5C3029C9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly92:*:*:*:*:*:*",
"matchCriteriaId": "D0081A08-F134-467B-ABF8-FB3DE1157FC7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly93:*:*:*:*:*:*",
"matchCriteriaId": "40375634-96E6-411A-9DF6-DA4B4AD326DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly94:*:*:*:*:*:*",
"matchCriteriaId": "F045C529-9AA6-4E5D-B5F1-4C173DBB0001",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly95:*:*:*:*:*:*",
"matchCriteriaId": "404E388D-1AA1-4196-85E5-A070C92558E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly96:*:*:*:*:*:*",
"matchCriteriaId": "1E6993A8-70E0-4229-A07D-C11B32B20C7D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly97:*:*:*:*:*:*",
"matchCriteriaId": "45C9C8DD-25B9-4094-BB71-C9D8C5B8AA5C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly98:*:*:*:*:*:*",
"matchCriteriaId": "35F5E88F-376B-4E14-87E0-1A58767D37E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:getferdi:ferdi:*:*:*:*:*:*:*:*",
"matchCriteriaId": "06ED59A0-58C2-4F6B-8D14-C0F6C0A5E301",
"versionEndIncluding": "5.8.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A Cross-Site Request Forgery (CSRF) in Ferdi through 5.8.1 and Ferdium through 6.0.0-nightly.98 allows attackers to read files via an uploaded file such as a settings/preferences file."
},
{
"lang": "es",
"value": "Una vulnerabilidad de tipo Cross-Site Request Forgery (CSRF) en Ferdi versiones hasta 5.8.1 y Ferdium versiones hasta 6.0.0-nightly.98, permite a atacantes leer archivos por medio de un archivo cargado, como un archivo de configuraci\u00f3n/preferencias"
}
],
"id": "CVE-2022-32320",
"lastModified": "2024-11-21T07:06:09.370",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-07-17T17:15:08.180",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Product"
],
"url": "https://getferdi.com/"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/omriinbar-cyesec/c1179fe99725d2b828b6573c0d110c9c"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/getferdi/ferdi"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Product"
],
"url": "https://getferdi.com/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://gist.github.com/omriinbar-cyesec/c1179fe99725d2b828b6573c0d110c9c"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/getferdi/ferdi"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-352"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…