CVE-2022-0414
published 2022-01-31CVE-2022-0414: Improper Validation of Specified Quantity in Input in Packagist dolibarr/dolibarr prior to 16.0.
PriorityP419medium4.3CVSS 3.1
AVNACLPRLUINSUCNILAN
EPSS
0.91%
55.6th percentile
Improper Validation of Specified Quantity in Input in Packagist dolibarr/dolibarr prior to 16.0.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dolibarr | dolibarr | >= 0 < 15.0 | 15.0 |
| dolibarr | dolibarr_dolibarr | >= unspecified < 16.0 | 16.0 |
| dolibarr | dolibarr_erp_crm | < 16.0.0 | 16.0.0 |
CVSS provenance
nvdv3.14.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
nvdv3.04.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:P/A:N
osv4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Dolibarr vulnerable to Improper Validation of Specified Quantity in Input
ghsa·2022-02-01
CVE-2022-0414 [MEDIUM] CWE-1284 Dolibarr vulnerable to Improper Validation of Specified Quantity in Input
Dolibarr vulnerable to Improper Validation of Specified Quantity in Input
Dolibarr 14.0.5 and prior versions are vulnerable to Improper Validation of Specified Quantity in Input.
OSV
Dolibarr vulnerable to Improper Validation of Specified Quantity in Input
osv·2022-02-01
CVE-2022-0414 [MEDIUM] Dolibarr vulnerable to Improper Validation of Specified Quantity in Input
Dolibarr vulnerable to Improper Validation of Specified Quantity in Input
Dolibarr 14.0.5 and prior versions are vulnerable to Improper Validation of Specified Quantity in Input.
OSV
CVE-2022-0414: Improper Validation of Specified Quantity in Input in Packagist dolibarr/dolibarr prior to 16
osv·2022-01-31·CVSS 4.3
CVE-2022-0414 [MEDIUM] CVE-2022-0414: Improper Validation of Specified Quantity in Input in Packagist dolibarr/dolibarr prior to 16
Improper Validation of Specified Quantity in Input in Packagist dolibarr/dolibarr prior to 16.0.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-01-31
Published