Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2022-46382
Analyzed
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-06 Dec, 2022 | 16:15
Updated At-08 Dec, 2022 | 17:02

RackN Digital Rebar through 4.6.14, 4.7 through 4.7.22, 4.8 through 4.8.5, 4.9 through 4.9.12, and 4.10 through 4.10.8 has Insecure Permissions. After signing into Digital Rebar, users are issued authentication tokens tied to their account to perform actions within Digital Rebar. During the validation process of these tokens, Digital Rebar did not check if the user account still exists. Deleted Digital Rebar users could still use their tokens to perform actions within Digital Rebar.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.18.8HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Type: Primary
Version: 3.1
Base score: 8.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CPE Matches

rackn
rackn
>>digital_rebar>>Versions up to 4.6.14(inclusive)
cpe:2.3:a:rackn:digital_rebar:*:*:*:*:*:*:*:*
rackn
rackn
>>digital_rebar>>Versions from 4.7(inclusive) to 4.7.22(inclusive)
cpe:2.3:a:rackn:digital_rebar:*:*:*:*:*:*:*:*
rackn
rackn
>>digital_rebar>>Versions from 4.8(inclusive) to 4.8.5(inclusive)
cpe:2.3:a:rackn:digital_rebar:*:*:*:*:*:*:*:*
rackn
rackn
>>digital_rebar>>Versions from 4.9(inclusive) to 4.9.12(inclusive)
cpe:2.3:a:rackn:digital_rebar:*:*:*:*:*:*:*:*
rackn
rackn
>>digital_rebar>>Versions from 4.10(inclusive) to 4.10.8(inclusive)
cpe:2.3:a:rackn:digital_rebar:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-276Primarynvd@nist.gov
CWE ID: CWE-276
Type: Primary
Source: nvd@nist.gov
Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References
HyperlinkSourceResource
https://rackn.com/products/rebar/cve@mitre.org
Product
Hyperlink: https://rackn.com/products/rebar/
Source: cve@mitre.org
Resource:
Product
Change History
0Changes found

Details not found