CVE-2022-2111
published 2022-06-17CVE-2022-2111: Unrestricted Upload of File with Dangerous Type in GitHub repository inventree/inventree prior to 0.7.2.
PriorityP349high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
1.17%
63.4th percentile
Unrestricted Upload of File with Dangerous Type in GitHub repository inventree/inventree prior to 0.7.2.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| citrix | citrix_workspace | — | — |
| inventree | inventree | >= 0 < 0.7.2 | 0.7.2 |
| inventree | inventree_inventree | >= unspecified < 0.7.2 | 0.7.2 |
| inventree_project | inventree | < 0.7.2 | 0.7.2 |
| msrc | microsoft_endpoint_configuration_manager | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.0CRITICALCVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
vendor_msrc7.8HIGH
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Unrestricted Attachment Upload
osv·2022-06-17
CVE-2022-2111 [HIGH] Unrestricted Attachment Upload
Unrestricted Attachment Upload
### Impact
InvenTree allows unrestricted upload of files as attachments to various database fields. Potentially dangerous files (such as HTML files containing malicious javascript) can be uploaded, and (when opened by the user) run the malicious code directly in the users browser.
*Note that the upload of malicious files must be performed by an authenticated user account*
### Solution
The solution for this vulnerability is to ensure that attachment files are downloaded to the local machine before opening, rather than opening the file in the current browser context.
### Patches
- The issue is addressed in the upcoming 0.8.0 release
- This fix will also be back-ported to the 0.7.x branch, applied to the 0.7.2 release
### Workarounds
Users can alleviat
GHSA
Unrestricted Attachment Upload
ghsa·2022-06-17
CVE-2022-2111 [HIGH] CWE-434 Unrestricted Attachment Upload
Unrestricted Attachment Upload
### Impact
InvenTree allows unrestricted upload of files as attachments to various database fields. Potentially dangerous files (such as HTML files containing malicious javascript) can be uploaded, and (when opened by the user) run the malicious code directly in the users browser.
*Note that the upload of malicious files must be performed by an authenticated user account*
### Solution
The solution for this vulnerability is to ensure that attachment files are downloaded to the local machine before opening, rather than opening the file in the current browser context.
### Patches
- The issue is addressed in the upcoming 0.8.0 release
- This fix will also be back-ported to the 0.7.x branch, applied to the 0.7.2 release
### Workarounds
Users can alleviat
Red Hat
kernel: Linux kernel: Information disclosure and denial of service via use-after-free in ACPI subsystem
vendor_redhat·2025-10-01·CVSS 7.8
CVE-2022-50423 [HIGH] CWE-763 kernel: Linux kernel: Information disclosure and denial of service via use-after-free in ACPI subsystem
kernel: Linux kernel: Information disclosure and denial of service via use-after-free in ACPI subsystem
In the Linux kernel, the following vulnerability has been resolved:
ACPICA: Fix use-after-free in acpi_ut_copy_ipackage_to_ipackage()
There is an use-after-free reported by KASAN:
BUG: KASAN: use-after-free in acpi_ut_remove_reference+0x3b/0x82
Read of size 1 at addr ffff888112afc460 by task modprobe/2111
CPU: 0 PID: 2111 Comm: modprobe Not tainted 6.1.0-rc7-dirty
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996),
Call Trace:
kasan_report+0xae/0xe0
acpi_ut_remove_reference+0x3b/0x82
acpi_ut_copy_iobject_to_iobject+0x3be/0x3d5
acpi_ds_store_object_to_local+0x15d/0x3a0
acpi_ex_store+0x78d/0x7fd
acpi_ex_opcode_1A_1T_1R+0xbe4/0xf9b
acpi_ps_parse_aml+0x217/0x8d5
...
The root cause of t
Microsoft
Microsoft Endpoint Configuration Manager Elevation of Privilege Vulnerability
vendor_msrc·2022-04-12·CVSS 7.8
CVE-2022-24527 [HIGH] Microsoft Endpoint Configuration Manager Elevation of Privilege Vulnerability
Microsoft Endpoint Configuration Manager Elevation of Privilege Vulnerability
FAQ: How do I get the update?
Customers have two options for the update that addresses this vulnerability:
Upgrade to Configuration Manager current branch, version 2203 (Build 5.00.9078) which is available as an in-console update. See Checklist for installing update 2203 for Configuration Manager for more information.
Apply the hotfix. Customers running Microsoft Endpoint Configuration Manager, versions 1910 through versions 2111 who are not able to install Configuration Manager Update 2203 (Build 5.00.9078) can download and install hotfix KB12819689. See Connected cache update for Microsoft Endpoint Configuration Manager version 2111 for prerequisites, download link, and installation instructions.
FAQ: What
Citrix
CVE-2022-21825: An Improper Access Control vulnerability exists in Citrix Workspace App for Linux 2012 - 2111 with App Protection installed that can allow an attacker
vendor_citrix·2022-02-09·CVSS 7.8
CVE-2022-21825 [HIGH] CWE-284 CVE-2022-21825: An Improper Access Control vulnerability exists in Citrix Workspace App for Linux 2012 - 2111 with App Protection installed that can allow an attacker
CVE-2022-21825: An Improper Access Control vulnerability exists in Citrix Workspace App for Linux 2012 - 2111 with App Protection installed that can allow an attacker to perform local privilege escalation.
Citrix
Citrix Workspace App for Linux Security Update
vendor_citrix·CVSS 7.8
CVE-2022-21825 [HIGH] CWE-284 Citrix Workspace App for Linux Security Update
Citrix Workspace App for Linux Security Update
Vulnerability Type Pre-conditions CVE-2022-21825 Local privilege Escalation CWE-284: Improper Access Control Local user access to a system where Citrix Workspace App for Linux has been installed with App Protection. This vulnerability only affects Citrix Workspace app for Linux 2012 - 2111 and only exists if App Protection was installed as part of Citrix Workspace app for Linux. This vulnerability does not exist if App Protection is not installed. Citrix Workspace app for other platforms is not affected by this issue. Instructions This issue has been addressed in the following versions of Citrix Workspace app for Linux: Citrix Workspace App for Linux 2112 and later versions Citrix strongly recommends that affected customers upgrade to a
CVE
No detection rules found.
No public exploits indexed.
2022-06-17
Published