First published: Mon Aug 22 2022(Updated: )
Unverified Password Change in GitHub repository octoprint/octoprint prior to 1.8.3.
Credit: security@huntr.dev
Affected Software | Affected Version | How to fix |
---|---|---|
Octoprint Octoprint | <1.8.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-2930 is high with a CVSS score of 7.8.
CVE-2022-2930 affects Octoprint versions prior to 1.8.3.
To fix the unverified password change vulnerability in Octoprint, update to version 1.8.3 or later.
You can find more information about CVE-2022-2930 on the following links: [GitHub Commit](https://github.com/octoprint/octoprint/commit/1453076ee3e47fcab2dc73664ec2d61d3ef7fc4f) and [Huntr Bounty](https://huntr.dev/bounties/da6745e4-7bcc-4e9a-9e96-0709ec9f2477).
The Common Weakness Enumeration (CWE) ID for CVE-2022-2930 is CWE-620.