COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2022-31321

CVE-2022-31321

Severity
critical
Source
NVD · cve
Published
2022-08-01
CVSS
9.1
Reference
https://nvd.nist.gov/vuln/detail/CVE-2022-31321
shame 35/100

The foldername parameter in Bolt 5.1.7 was discovered to have incorrect input validation, allowing attackers to perform directory enumeration or cause a Denial of Service (DoS) via a crafted input.

Players implicated

boltcms · vendorbolt · product

Description

The foldername parameter in Bolt 5.1.7 was discovered to have incorrect input validation, allowing attackers to perform directory enumeration or cause a Denial of Service (DoS) via a crafted input.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.