Skip to main content

Incorrect Comparison

CVE-2022-38179

Severity Medium
Score 6.1/10

Summary

JetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attack.

  • LOW
  • NETWORK
  • LOW
  • CHANGED
  • REQUIRED
  • NONE
  • LOW
  • NONE

CWE-697 - Incorrect Comparison

The software compares two entities in a security-relevant context, but the comparison is incorrect, which may lead to resultant weaknesses.

Advisory Timeline

  • Published