CVE-2022-1554 Information
Jun 07, 2022
cve
Description
Path Traversal due to send_file call in GitHub repository clinical-genomics/scout prior to 4.52.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Reference
https://github.com/clinical-genomics/scout/commit/952a2e2319af2d95d22b017a561730feac086ff1 https://huntr.dev/bounties/7acac778-5ba4-4f02-99e2-e4e17a81e600
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
NONE
Base Score
NONE
Base Severity
7.5
Share on: