What is CVE-2022-4800?

CVE-2022-4800 is a high-severity vulnerability in Usememos Usememos/memos, classified under Improper Verification of Source of a Communication Channel. CVSS score: 8.6/10. Published 2022-12-28.

How severe is CVE-2022-4800?

High severity. CVSS v3 base score is 8.6 out of 10.

Vulnerability in Usememos Usememos/memos

CVE-2022-4800

Improper Verification of Source of a Communication Channel in GitHub repository usememos/memos prior to 0.9.1.

EPSS: 0.002 (40.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.6 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L.

Affected products

Usememos Usememos/memos — versions unspecified

Weakness classification (CWE)

CWE-940 — Improper Verification of Source of a Communication Channel

References

github.com/usememos/memos/commit/3556ae4e651d9443dc3bb8a170dd3cc726517a53
huntr.dev/bounties/aa45a6eb-cc38-45e5-a301-221ef43c0ef8

Frequently asked questions

What is CVE-2022-4800?: CVE-2022-4800 is a high-severity vulnerability in Usememos Usememos/memos, classified under Improper Verification of Source of a Communication Channel. CVSS score: 8.6/10. Published 2022-12-28.
How severe is CVE-2022-4800?: High severity. CVSS v3 base score is 8.6 out of 10.