Vulnerability Description
Terminalfour versions 8.3.7, 8.3.x versions prior to version 8.3.8 and r 8.2.x versions prior to version 8.2.18.5 or 8.2.18.2.1 are vulnerable to (XSS) vulnerability that could be exploited by an attacker to mislead an administrator and steal their credentials.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Terminalfour | Terminalfour | >= 8.2.0, < 8.2.18.2.1 |
Related Weaknesses (CWE)
References
- https://bulletproofsi.com/wp-content/uploads/2022/08/Bulletproof_Vuls_Id_2022-30ExploitThird Party Advisory
- https://bulletproofsi.com/wp-content/uploads/2022/10/Bulletproof_Vuls_Id_CVE-202ExploitThird Party Advisory
- https://docs.terminalfour.com/release-notes/82/1821.htmlRelease NotesVendor Advisory
- https://docs.terminalfour.com/release-notes/82/185.htmlRelease NotesVendor Advisory
- https://docs.terminalfour.com/release-notes/83/8.htmlRelease NotesVendor Advisory
- https://bulletproofsi.com/wp-content/uploads/2022/08/Bulletproof_Vuls_Id_2022-30ExploitThird Party Advisory
- https://bulletproofsi.com/wp-content/uploads/2022/10/Bulletproof_Vuls_Id_CVE-202ExploitThird Party Advisory
- https://docs.terminalfour.com/release-notes/82/1821.htmlRelease NotesVendor Advisory
- https://docs.terminalfour.com/release-notes/82/185.htmlRelease NotesVendor Advisory
- https://docs.terminalfour.com/release-notes/83/8.htmlRelease NotesVendor Advisory
FAQ
What is CVE-2022-30770?
CVE-2022-30770 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Terminalfour versions 8.3.7, 8.3.x versions prior to version 8.3.8 and r 8.2.x versions prior to version 8.2.18.5 or 8.2.18.2.1 are vulnerable to (XSS) vulnerability that could be exploited by an atta...
How severe is CVE-2022-30770?
CVE-2022-30770 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-30770?
Check the references section above for vendor advisories and patch information. Affected products include: Terminalfour Terminalfour.