CVE-2022-31155 – Sourcegraph is an opensource code search and navigation engine. In Sourcegraph versions be …

1 August 2022

Vuln ID: CVE-2022-31155

Published: 2022-08-01 19:15:08Z

Description: Sourcegraph is an opensource code search and navigation engine. In Sourcegraph versions before 3.41.0, it is possible for an attacker to delete other usersÃ¢â‚¬â„¢ saved searches due to a bug in the authorization check. The vulnerability does not allow the reading of other usersÃ¢â‚¬â„¢ saved searches, only overwriting them with attacker-controlled searches. The issue is patched in Sourcegraph version 3.41.0. There is no workaround for this issue and updating to a secure version is highly recommended.

Source: NVD.NIST.GOV

Date:

1 August 2022

Categorie(s):

NVD

Tag(s):

NVD

A Comprehensive Cyber Guide: Best Practices for Small Businesses25 April 2024
Applying DevSecOps principles to machine learning workloads25 April 2024
Overcoming GenAI challenges in healthcare cybersecurity25 April 2024
25 cybersecurity AI stats you should know25 April 2024
73% of SME security pros missed or ignored critical alerts25 April 2024