CVE-2022-36323

High

9.1/10

Summary

Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or spawn a system root shell.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: HIGH
Scope: CHANGED
User Interaction: NONE
Privileges Required: HIGH
Confidentiality Impact: HIGH
Availability Impact: HIGH

References

Advisory Timeline

Published Aug 10, 2022

CVE-2022-36323

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS