CVE-2022-3348

Just like in the previous report, an attacker could steal the account of different users. But in this case, it's a little bit more specific, because it is needed to be an editor in the same app as the victim.

CVSS v3 4.9 MEDIUM

4.9^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/tooljet/tooljet/commit/37bf6de75f161e03c2a81888810488b913863a46	Patch Third Party Advisory
https://huntr.dev/bounties/aae4aeb8-2612-4254-85e5-90675b082eac	Exploit Patch Third Party Advisory
https://github.com/tooljet/tooljet/commit/37bf6de75f161e03c2a81888810488b913863a46	Patch Third Party Advisory
https://huntr.dev/bounties/aae4aeb8-2612-4254-85e5-90675b082eac	Exploit Patch Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:tooljet:tooljet:*:*:*:*:*:*:*:*

History

21 Nov 2024, 07:19

Type	Values Removed	Values Added
References	~~() https://github.com/tooljet/tooljet/commit/37bf6de75f161e03c2a81888810488b913863a46 - Patch, Third Party Advisory~~	() https://github.com/tooljet/tooljet/commit/37bf6de75f161e03c2a81888810488b913863a46 - Patch, Third Party Advisory
References	~~() https://huntr.dev/bounties/aae4aeb8-2612-4254-85e5-90675b082eac - Exploit, Patch, Third Party Advisory~~	() https://huntr.dev/bounties/aae4aeb8-2612-4254-85e5-90675b082eac - Exploit, Patch, Third Party Advisory

Information

Published : 2022-09-28 09:15

Updated : 2024-11-21 07:19

NVD link : CVE-2022-3348

Mitre link : CVE-2022-3348

CVE.ORG link : CVE-2022-3348

JSON object : View

Products Affected

tooljet

tooljet

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

{"id": "CVE-2022-3348", "metrics": {"cvssMetricV30": [{"type": "Secondary", "source": "security@huntr.dev", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 1.2}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 1.2}]}, "published": "2022-09-28T09:15:09.973", "references": [{"url": "https://github.com/tooljet/tooljet/commit/37bf6de75f161e03c2a81888810488b913863a46", "tags": ["Patch", "Third Party Advisory"], "source": "security@huntr.dev"}, {"url": "https://huntr.dev/bounties/aae4aeb8-2612-4254-85e5-90675b082eac", "tags": ["Exploit", "Patch", "Third Party Advisory"], "source": "security@huntr.dev"}, {"url": "https://github.com/tooljet/tooljet/commit/37bf6de75f161e03c2a81888810488b913863a46", "tags": ["Patch", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://huntr.dev/bounties/aae4aeb8-2612-4254-85e5-90675b082eac", "tags": ["Exploit", "Patch", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "security@huntr.dev", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "Just like in the previous report, an attacker could steal the account of different users. But in this case, it's a little bit more specific, because it is needed to be an editor in the same app as the victim."}, {"lang": "es", "value": "Al igual que en el informe anterior, un atacante podr\u00eda robar la cuenta de diferentes usuarios. Pero en este caso, es un poco m\u00e1s espec\u00edfico, porque se necesita ser un editor en la misma aplicaci\u00f3n que la v\u00edctima"}], "lastModified": "2024-11-21T07:19:20.747", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:tooljet:tooljet:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C399C04-A736-496A-8112-2D404A660BA3", "versionEndExcluding": "2022-09-11"}], "operator": "OR"}]}], "sourceIdentifier": "security@huntr.dev"}