๐Ÿ” CVE Alert

CVE-2022-3173

MEDIUM 4.3

Improper Authentication in snipe/snipe-it

CVSS Score
4.3
EPSS Score
0.0%
EPSS Percentile
0th

Improper Authentication in GitHub repository snipe/snipe-it prior to 6.0.10.

CWE CWE-287
Vendor snipe
Product snipe/snipe-it
Published Sep 17, 2022
Last Updated Aug 3, 2024
Stay Ahead of the Next One

Get instant alerts for snipe snipe/snipe-it

Be the first to know when new medium vulnerabilities affecting snipe snipe/snipe-it are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected Versions

snipe / snipe/snipe-it
unspecified < 6.0.10

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
huntr.dev: https://huntr.dev/bounties/6d8ffcc6-c6e3-4385-8ead-bdbbbacf79e9 github.com: https://github.com/snipe/snipe-it/commit/dcab1381e7ee0b7fd1df3a34750dbff4b79185b2