CVE-2022-40674 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.1 HIGH	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA-ADP	ADP	8.1 HIGH	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 77%

Affected Products (NVD)

Vendor	Product	Version
libexpat_project	libexpat	𝑥 < 2.4.9
debian	debian_linux	10.0
debian	debian_linux	11.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

expat

bookworm	2.5.0-1 fixed
bookworm (security)	2.5.0-1+deb12u1 fixed
bullseye	2.2.10-2+deb11u5 fixed
bullseye (security)	2.2.10-2+deb11u6 fixed
sid	2.6.3-2 fixed
trixie	2.6.3-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

apache2

bionic	not-affected
focal	not-affected
jammy	not-affected
kinetic	not-affected
lunar	not-affected
mantic	not-affected
noble	not-affected
trusty	not-affected
xenial	not-affected

apr-util

bionic	not-affected
focal	not-affected
jammy	not-affected
kinetic	not-affected
lunar	not-affected
mantic	not-affected
noble	not-affected
trusty	not-affected
xenial	not-affected

ayttm

bionic	dne
focal	dne
jammy	dne
trusty	ignored
xenial	needs-triage

cableswig

bionic	dne
focal	dne
jammy	dne
trusty	ignored
xenial	needs-triage

cadaver

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
kinetic	ignored
lunar	ignored
mantic	ignored
noble	needs-triage
trusty	ignored
xenial	needs-triage

cmake

bionic	not-affected
focal	not-affected
jammy	not-affected
kinetic	not-affected
lunar	not-affected
mantic	not-affected
noble	not-affected
trusty	ignored
xenial	not-affected

coin3

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
kinetic	ignored
lunar	ignored
mantic	ignored
noble	needs-triage
trusty	needs-triage
xenial	needs-triage

expat

bionic	Fixed 2.2.5-3ubuntu0.8 released
focal	Fixed 2.2.9-1ubuntu0.5 released
jammy	Fixed 2.4.7-1ubuntu0.1 released
kinetic	Fixed 2.4.8-2 released
lunar	Fixed 2.5.0-1 released
mantic	Fixed 2.5.0-1 released
noble	Fixed 2.5.0-1 released
trusty	Fixed 2.1.0-4ubuntu1.4+esm7 released
xenial	Fixed 2.1.0-7ubuntu0.16.04.5+esm6 released

firefox

bionic	Fixed 107.0+build2-0ubuntu0.18.04.1 released
focal	Fixed 107.0+build2-0ubuntu0.20.04.1 released
jammy	not-affected
kinetic	not-affected
lunar	not-affected
mantic	not-affected
noble	not-affected
trusty	ignored
xenial	ignored

gdcm

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
kinetic	ignored
lunar	ignored
mantic	ignored
noble	needs-triage
trusty	needs-triage
xenial	needs-triage

ghostscript

bionic	not-affected
focal	not-affected
jammy	not-affected
kinetic	not-affected
lunar	not-affected
mantic	not-affected
noble	not-affected
trusty	ignored
xenial	not-affected

insighttoolkit

bionic	dne
focal	dne
jammy	dne
trusty	ignored
xenial	needs-triage

insighttoolkit4

bionic	not-affected
focal	not-affected
jammy	not-affected
kinetic	not-affected
lunar	not-affected
mantic	dne
noble	dne
trusty	ignored
xenial	needs-triage

libxmltok

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
kinetic	ignored
lunar	ignored
mantic	ignored
noble	needs-triage
trusty	ignored
xenial	not-affected

matanza

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
kinetic	ignored
lunar	ignored
mantic	ignored
noble	needs-triage
trusty	ignored
xenial	needs-triage

smart

bionic	needs-triage
focal	dne
jammy	dne
trusty	ignored
xenial	needs-triage

swish-e

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
kinetic	ignored
lunar	ignored
mantic	ignored
noble	needs-triage
trusty	ignored
xenial	needs-triage

tdom

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
kinetic	ignored
lunar	ignored
mantic	ignored
noble	needs-triage
trusty	ignored
xenial	needs-triage

texlive-bin

bionic	not-affected
focal	not-affected
jammy	not-affected
kinetic	not-affected
lunar	not-affected
mantic	not-affected
noble	not-affected
trusty	ignored
xenial	needs-triage