PYSEC-2022-283

Import Source

https://github.com/pypa/advisory-database/blob/main/vulns/octoprint/PYSEC-2022-283.yaml

Aliases

CVE-2022-3068
GHSA-2p75-q37p-f852

Published

2022-09-21T12:15:00Z

Modified

2023-11-08T04:09:19.722681Z

Details

Improper Privilege Management in GitHub repository octoprint/octoprint prior to 1.8.3.

References

https://huntr.dev/bounties/f45c24cb-9104-4c6e-a9e1-5c7e75e83884
https://github.com/octoprint/octoprint/commit/ef95ef1c101b79394f134e8fce000e6bae046571

Affected packages

PyPI / octoprint

Package

Name: octoprint

Affected ranges

Type: GIT
Repo: https://github.com/octoprint/octoprint
Events: Introduced

0The exact introduced commit is unknown

Fixed

ef95ef1c101b79394f134e8fce000e6bae046571

Type: ECOSYSTEM
Events: Introduced

0The exact introduced commit is unknown

Fixed

1.8.3

Affected versions

1.*

1.3.11

1.3.12rc1

1.3.12rc3

1.3.12

1.4.0rc1

1.4.0rc2

1.4.0rc3

1.4.0rc4

1.4.0rc5

1.4.0rc6

1.4.0

1.4.1rc1

1.4.1rc2

1.4.1rc3

1.4.1rc4

1.4.1

1.4.2

1.5.0rc1

1.5.0rc2

1.5.0rc3

1.5.0

1.5.1

1.5.2

1.5.3

1.6.0rc1

1.6.0rc2

1.6.0rc3

1.6.0

1.6.1

1.7.0rc1

1.7.0rc2

1.7.0rc3

1.7.0

1.7.1

1.7.2

1.7.3

1.8.0rc1

1.8.0rc2

1.8.0rc3

1.8.0rc4

1.8.0rc5

1.8.0

1.8.1

1.8.2