Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown
CVE-2022-45213
Disclosure Date: January 01, 2023 (last updated October 08, 2023)
perfSONAR before 4.4.6 inadvertently supports the parse option for a file:// URL.
0
Attacker Value
Unknown
CVE-2022-45027
Disclosure Date: January 01, 2023 (last updated October 08, 2023)
perfSONAR before 4.4.6, when performing participant discovery, incorrectly uses an HTTP request header value to determine a local address.
0
Attacker Value
Unknown
CVE-2022-41413
Disclosure Date: November 30, 2022 (last updated October 08, 2023)
perfSONAR v4.x <= v4.4.5 was discovered to contain a Cross-Site Request Forgery (CSRF) which is triggered when an attacker injects crafted input into the Search function.
0
Attacker Value
Unknown
CVE-2022-41412
Disclosure Date: November 30, 2022 (last updated October 08, 2023)
An issue in the graphData.cgi component of perfSONAR v4.4.5 and prior allows attackers to access sensitive data and execute Server-Side Request Forgery (SSRF) attacks.
0
