CVE-2022-37603 (High) detected in loader-utils-2.0.3 #452

jovancacvetkovic · 2023-01-23T14:42:04Z

CVE-2022-46175 - High Severity Vulnerability

Vulnerability Library - loader-utils - 2.0.3

loader-utils - 2.0.3 (current version)
Found in base branch: main

CVSS 3 Score Details - (7.5)

Exploitability Metrics:
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: None
- Scope: Unchanged
Impact Metrics:
- Confidentiality Impact: None
- Integrity Impact: None
- Availability Impact: High

Suggested Fix

Type: Upgrade version

Release Date: Oct 6, 2022

Fix Resolution: loader-utils - 2.0.4

More Info

loader-utils issue resolved with #213

The text was updated successfully, but these errors were encountered:

AWSHurneyt · 2023-01-23T21:45:32Z

For reference, here's the PR addressing CVE-2022-46175
#453

lezzago · 2023-02-02T02:23:00Z

This issue has been resolved as the PR has been merged

jovancacvetkovic added bug Something isn't working untriaged labels Jan 23, 2023

jovancacvetkovic mentioned this issue Jan 23, 2023

[TASK] Investigate CVE's impact on the plugin opensearch-project/security-analytics-dashboards-plugin#380

Closed

praveensameneni removed the untriaged label Jan 23, 2023

lezzago closed this as completed Feb 2, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2022-37603 (High) detected in loader-utils-2.0.3 #452

CVE-2022-37603 (High) detected in loader-utils-2.0.3 #452

jovancacvetkovic commented Jan 23, 2023

AWSHurneyt commented Jan 23, 2023

lezzago commented Feb 2, 2023

CVE-2022-37603 (High) detected in loader-utils-2.0.3 #452

CVE-2022-37603 (High) detected in loader-utils-2.0.3 #452

Comments

jovancacvetkovic commented Jan 23, 2023

CVE-2022-46175 - High Severity Vulnerability

AWSHurneyt commented Jan 23, 2023

lezzago commented Feb 2, 2023