Vulnerabilities > CVE-2022-45771 - Unspecified vulnerability in Pwndoc Project Pwndoc 0.5.3

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

pwndoc-project

NVD

Published: 2022-12-05

Updated: 2022-12-06

Summary

An issue in the /api/audits component of Pwndoc v0.5.3 allows attackers to escalate privileges and execute arbitrary code via uploading a crafted audit file.

Vulnerable Configurations

Part	Description	Count
Application	Pwndoc_Project Pwndoc Project Pwndoc 0.5.3	1

References

https://github.com/pwndoc/pwndoc
https://github.com/pwndoc/pwndoc/issues/401