cbcvebase.
CVE-2022-4116
published 2022-11-22

CVE-2022-4116: A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote…

PriorityP270critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
32.52%
98.1th percentile
A vulnerability was found in quarkus. This security flaw happens in Dev UI Config Editor which is vulnerable to drive-by localhost attacks leading to remote code execution.

Affected

3 ranges
VendorProductVersion rangeFixed in
quarkusquarkus< 2.13.52.13.5
quarkusquarkus
quarkusquarkus>= 2.14.0 < 2.14.22.14.2

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability exists in the Quarkus Dev UI Config Editor endpoint, which is only active in development mode (Dev UI); monitor for unexpected HTTP requests targeting localhost Dev UI endpoints from external/cross-origin sources
  • Attack vector is a drive-by localhost attack (cross-site request forgery style), meaning a malicious web page causes the victim's browser to issue requests to the locally running Quarkus Dev UI; detect anomalous cross-origin requests to localhost dev endpoints
  • ·This vulnerability only affects Quarkus applications running in development mode (Dev UI is not active in production builds); production deployments are not impacted

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.