Vulnerability Description
University Library Automation System developed by Yordam Bilgi Teknolojileri before version 19.2 has an unauthenticated Reflected XSS vulnerability. This has been fixed in the version 19.2
CVSS Score
6.1
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Yordam | Library Automation System | < 19.2 |
Related Weaknesses (CWE)
References
- https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-22-0637
- https://www.usom.gov.tr/bildirim/tr-22-0637Third Party Advisory
- https://www.usom.gov.tr/bildirim/tr-22-0637Third Party Advisory
FAQ
What is CVE-2022-2266?
CVE-2022-2266 is a vulnerability with a CVSS score of 6.1 (MEDIUM). University Library Automation System developed by Yordam Bilgi Teknolojileri before version 19.2 has an unauthenticated Reflected XSS vulnerability. This has been fixed in the version 19.2
How severe is CVE-2022-2266?
CVE-2022-2266 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-2266?
Check the references section above for vendor advisories and patch information. Affected products include: Yordam Library Automation System.