CVE-2022-1432: XSS
First published: Wed May 18 2022(Updated: )
Cross-site Scripting (XSS) - Generic in GitHub repository octoprint/octoprint prior to 1.8.0.
Credit: security@huntr.dev
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Octoprint Octoprint | <1.8.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-1432?
The severity of CVE-2022-1432 is high, with a severity value of 6.4.
How does CVE-2022-1432 affect the octoprint/octoprint repository?
CVE-2022-1432 affects the octoprint/octoprint repository prior to version 1.8.0, allowing for Cross-site Scripting (XSS) attacks.
What is the CWE ID associated with CVE-2022-1432?
The CWE ID associated with CVE-2022-1432 is CWE-79.
How can I fix CVE-2022-1432?
To fix CVE-2022-1432, update the octoprint/octoprint repository to version 1.8.0 or later.
Where can I find more information about CVE-2022-1432?
You can find more information about CVE-2022-1432 at the following references: [GitHub Commit](https://github.com/octoprint/octoprint/commit/6d259d7e6f5b0de9a1c762831537a386e53978d3) and [Huntr Bounty](https://huntr.dev/bounties/cb545c63-a3c1-4d57-8f06-e4593ab389bf).
- collector/nvd-index
- vendor/octoprint
- canonical/octoprint octoprint