CVE-2022-0932

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-0932

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-0932.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-0932

Aliases

GHSA-mcgw-5fhw-3fq8

Published

2022-03-11T00:00:00Z

Modified

2025-12-04T10:01:10.513862Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

Missing Authorization in saleor/saleor

Details

Missing Authorization in GitHub repository saleor/saleor prior to 3.1.2.

Database specific

{
    "cna_assigner": "@huntrdev",
    "cwe_ids": [
        "CWE-862"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/0xxx/CVE-2022-0932.json"
}

References

Affected packages

Git / github.com/saleor/saleor

Affected ranges

Type: GIT
Repo: https://github.com/saleor/saleor
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

014ecdb8aae8eba3b39878b3aa1dda7bc20a7803

Affected versions

2.*

2.0.0

2.1.0

2.10.0

2.10.0-rc.1

2.10.0-rc.2

2.2.0

2.3.0

2.4.0

2.5.0

2.6.0

2.7.0

2.8.0

2.9.0

3.*

3.0.0-a.0

3.1.0

3.1.0-a.1

3.1.0-a.10

3.1.0-a.11

3.1.0-a.12

3.1.0-a.13

3.1.0-a.14

3.1.0-a.15

3.1.0-a.16

3.1.0-a.17

3.1.0-a.18

3.1.0-a.19

3.1.0-a.2

3.1.0-a.20

3.1.0-a.21

3.1.0-a.22

3.1.0-a.23

3.1.0-a.24

3.1.0-a.25

3.1.0-a.3

3.1.0-a.4

3.1.0-a.5

3.1.0-a.6

3.1.0-a.7

3.1.0-a.8

3.1.0-a.9

3.1.0-rc.1

3.1.1

v2016.*

v2016.07.0

v2017.*

v2017.02.0

v2017.02.1

v2017.03.0

v2017.03.1

v2017.03.2

v2017.03.3

v2017.03.4

v2017.07.0

v2017.09

v2017.10

v2017.11

v2017.12

v2017.12.1

v2018.*

v2018.01

v2018.02

v2018.03

v2018.04

v2018.05

v2018.06

v2018.08

v2018.09

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-0932.json"