UBUNTU-CVE-2022-4396
- Source
- https://ubuntu.com/security/CVE-2022-4396
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2022/UBUNTU-CVE-2022-4396.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2022-4396
- Published
- 2022-12-10T12:15:00Z
- Modified
- 2025-07-14T06:46:09.235686Z
- Upstream
- Severity
-
- 3.5 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N CVSS Calculator
- 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- - medium
- Summary
- [none]
- Details
-
* UNSUPPORTED WHEN ASSIGNED * A vulnerability was found in RDFlib pyrdfa3 and classified as problematic. This issue affects the function getoption of the file pyRdfa/init.py. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of the patch is ffd1d62dd50d5f4190013b39cedcdfbd81f3ce3e. It is recommended to apply a patch to fix this issue. The identifier VDB-215249 was assigned to this vulnerability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
- References
Affected packages
Ubuntu:Pro:16.04:LTS / rdflib
Package
- Name
- rdflib
- Purl
- pkg:deb/ubuntu/rdflib@4.1.2-3+deb8u1build0.16.04.1?arch=source&distro=esm-apps/xenial
Ubuntu:Pro:18.04:LTS / rdflib
Package
- Name
- rdflib
- Purl
- pkg:deb/ubuntu/rdflib@4.2.1-2?arch=source&distro=esm-apps/bionic
Ubuntu:Pro:20.04:LTS / rdflib
Package
- Name
- rdflib
- Purl
- pkg:deb/ubuntu/rdflib@4.2.2-5?arch=source&distro=esm-apps/focal
Ubuntu:22.04:LTS / python-pyrdfa
Package
- Name
- python-pyrdfa
- Purl
- pkg:deb/ubuntu/python-pyrdfa@3.5.2~ds-5build1?arch=source&distro=jammy
Ubuntu:22.04:LTS / rdflib
Package
- Name
- rdflib
- Purl
- pkg:deb/ubuntu/rdflib@6.1.1-1?arch=source&distro=jammy
Ubuntu:24.04:LTS / rdflib
Package
- Name
- rdflib
- Purl
- pkg:deb/ubuntu/rdflib@6.1.1-3?arch=source&distro=noble