CVE Catalog

CVE-2022-42479

MediumCVSS 5.4
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.06%

18th percentile — higher than 18% of all known CVEs

Summary

TemplateHouse Soledad has a missing authorization vulnerability that allows access to functionality not properly constrained by access control lists (ACLs). This issue affects Soledad from n/a through 8.2.5.

Risk Assessment

The lack of proper authorization constraints may lead to unauthorized access to sensitive functionalities, posing a risk to the organization's data security.

Recommendation

It is recommended to upgrade to the latest version of Soledad and implement appropriate access control mechanisms to secure functionalities against unauthorized access.

Original NVD description (English source)

Missing Authorization vulnerability in TemplateHouse Soledad allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Soledad: from n/a through 8.2.5.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS