Vulnerabilities > CVE-2022-4111 - Unspecified vulnerability in Tooljet

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
tooljet
NVD
Published: 2022-11-22
Updated: 2024-11-21

Summary

Unrestricted file size limit can lead to DoS in tooljet/tooljet <1.27 by allowing a logged in attacker to upload profile pictures over 2MB.

Vulnerable Configurations

Part Description Count
Application
Tooljet
127

References