CVE-2022-34009 — MEDIUM (5.5)

Vulnerability Description

Fossil 2.18 on Windows allows attackers to cause a denial of service (daemon crash) via an XSS payload in a ticket. This occurs because the ticket data is stored in a temporary file, and the product does not properly handle the absence of this file after Windows Defender has flagged it as malware.

CVSS Score

5.5

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Fossil-Scm	Fossil	2.18
Microsoft	Windows	-

Related Weaknesses (CWE)

CWE-79

References

https://fossil-scm.org/home/doc/trunk/www/changes.wikiVendor Advisory
https://gainsec.com/2022/07/27/cve-2022-34009/ExploitThird Party Advisory
https://fossil-scm.org/home/doc/trunk/www/changes.wikiVendor Advisory
https://gainsec.com/2022/07/27/cve-2022-34009/ExploitThird Party Advisory

FAQ

What is CVE-2022-34009?

CVE-2022-34009 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Fossil 2.18 on Windows allows attackers to cause a denial of service (daemon crash) via an XSS payload in a ticket. This occurs because the ticket data is stored in a temporary file, and the product d...

How severe is CVE-2022-34009?

CVE-2022-34009 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-34009?

Check the references section above for vendor advisories and patch information. Affected products include: Fossil-Scm Fossil, Microsoft Windows.