COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2022-35131

CVE-2022-35131

Severity
critical
Source
NVD · cve
Published
2022-07-25
CVSS
9.0
Reference
https://nvd.nist.gov/vuln/detail/CVE-2022-35131
⚡ RCE shame 50/100 rce

Joplin v2.8.8 allows attackers to execute arbitrary commands via a crafted payload injected into the Node titles.

Players implicated

joplinapp · vendorjoplin · product

Description

Joplin v2.8.8 allows attackers to execute arbitrary commands via a crafted payload injected into the Node titles.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.