CVE-2022-2064
HIGH8.8EPSS 0.31%Insufficient Session Expiration in NocoDB
發布日:2022/6/14修改日:2023/11/8
描述
Insufficient Session Expiration in GitHub repository nocodb/nocodb prior to 0.91.9.
受影響套件(1)
- npm/nocodbfrom 0, < 0.91.9
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.8 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
參考連結(7)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2022-2064
- PATCHhttps://github.com/nocodb/nocodb
- WEBhttps://github.com/nocodb/nocodb/commit/c9b5111b25aea2781e19395a8e9107ddbd235a2b
- WEBhttps://github.com/nocodb/nocodb/pull/2262
- WEBhttps://github.com/nocodb/nocodb/pull/2338
- WEBhttps://github.com/nocodb/nocodb/releases/tag/0.91.9
- WEBhttps://huntr.dev/bounties/39523d51-fc5c-48b8-a082-171da79761bb