Vulnerabilities > CVE-2022-23340 - Unspecified vulnerability in Joplin Project Joplin 2.6.10

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
joplin-project
critical
NVD
Published: 2022-02-08
Updated: 2022-02-11

Summary

Joplin 2.6.10 allows remote attackers to execute system commands through malicious code in user search results.

Vulnerable Configurations

Part Description Count
Application
Joplin_Project
1

References