NVD - CVE-2022-4525

Vulnerability Change Records for CVE-2022-4525

Change History

CVE Modified by VulDB 12/24/2022 5:15:09 PM

Action	Type	Old Value	New Value
Added	CVSS V3		VulDB AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Removed	CVSS V3.1	VulDB AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Removed	CVSS V3.1 Reason	C-Information leaked appears non-critical/sensitive
Removed	CVSS V3.1 Reason	PR-No privileges needed
Removed	CVSS V3.1 Reason	S-Security boundary
Removed	CWE	VulDB CWE-707
Removed	CWE	VulDB CWE-74
Removed	CWE Reason	CWE-707 / More specific CWE option available
Changed	Description	A vulnerability has been found in National Sleep Research Resource sleepdata.org up to 59.0.0.rc and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 59.0.0 is able to address this issue. The name of the patch is da44a3893b407087829b006d09339780919714cd. It is recommended to upgrade the affected component. The identifier VDB-215905 was assigned to this vulnerability.	A vulnerability has been found in National Sleep Research Resource sleepdata.org up to 58.x and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 59.0.0.rc is able to address this issue. The name of the patch is da44a3893b407087829b006d09339780919714cd. It is recommended to upgrade the affected component. The identifier VDB-215905 was assigned to this vulnerability.
Added	Reference		https://github.com/nsrr/sleepdata.org/releases/tag/59.0.0.rc [No Types Assigned]
Removed	Reference	https://github.com/nsrr/sleepdata.org/releases/tag/v59.0.0 [Third Party Advisory]