CVE-2022-32175

Source
https://cve.org/CVERecord?id=CVE-2022-32175
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-32175.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-32175
Aliases
Published
2022-10-11T14:20:11.178Z
Modified
2026-07-15T01:49:09.921938217Z
Severity
  • 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L CVSS Calculator
Summary
AdGuardHome - CSRF
Details

In AdGuardHome, versions v0.95 through v0.108.0-b.13 are vulnerable to Cross-Site Request Forgery (CSRF), in the custom filtering rules functionality. An attacker can persuade an authorized user to follow a malicious link, resulting in deleting/modifying the custom filtering rules.

Database specific
{
    "cwe_ids": [
        "CWE-352"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/32xxx/CVE-2022-32175.json",
    "cna_assigner": "Mend"
}
References

Affected packages

Git / github.com/adguardteam/adguardhome

Affected ranges

Type
GIT
Repo
https://github.com/adguardteam/adguardhome
Events
Database specific
{
    "extracted_events": [
        {
            "introduced": "v0.95"
        },
        {
            "fixed": "v0.108.0-b.13"
        }
    ],
    "source": "DESCRIPTION"
}

Affected versions

v0.*
v0.100.0
v0.100.1
v0.100.2
v0.100.3
v0.100.4
v0.100.5
v0.100.6
v0.100.7
v0.100.8
v0.100.9
v0.101.0
v0.102.0
v0.103.0
v0.103.0-beta1
v0.103.0-beta2
v0.103.0-beta3
v0.103.1
v0.103.2
v0.103.3
v0.104.0
v0.104.0-beta1
v0.104.0-beta2
v0.104.0-beta3
v0.104.1
v0.105.0
v0.105.0-beta.3
v0.105.0-beta.4
v0.105.0-beta.5
v0.105.1
v0.105.1-beta.1
v0.105.2
v0.105.2-beta.1
v0.106.0
v0.106.0-b.1
v0.106.0-b.2
v0.106.0-b.3
v0.106.0-b.4
v0.106.0-b.5
v0.107.0
v0.107.0-b.1
v0.107.0-b.10
v0.107.0-b.11
v0.107.0-b.12
v0.107.0-b.13
v0.107.0-b.14
v0.107.0-b.15
v0.107.0-b.16
v0.107.0-b.17
v0.107.0-b.2
v0.107.0-b.3
v0.107.0-b.4
v0.107.0-b.5
v0.107.0-b.6
v0.107.0-b.7
v0.107.0-b.8
v0.107.0-b.9
v0.108.0-b.1
v0.108.0-b.10
v0.108.0-b.11
v0.108.0-b.12
v0.108.0-b.2
v0.108.0-b.3
v0.108.0-b.4
v0.108.0-b.5
v0.108.0-b.6
v0.108.0-b.7
v0.108.0-b.8
v0.108.0-b.9
v0.95-hotfix
v0.96
v0.96-hotfix
v0.97.0
v0.97.1
v0.98.0
v0.98.1
v0.99.0
v0.99.1
v0.99.2
v0.99.3

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-32175.json"