CVE Vulnerabilities

CVE-2022-28204

Published: Sep 19, 2022 | Modified: Nov 21, 2024
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

A denial-of-service issue was discovered in MediaWiki 1.37.x before 1.37.2. Rendering of w/index.php?title=Special%3AWhatLinksHere&target=Property%3AP31&namespace=1&invert=1 can take more than thirty seconds. There is a DDoS risk.

Affected Software

Name Vendor Start Version End Version
Mediawiki Mediawiki 1.37.0 (including) 1.37.2 (excluding)
Mediawiki Ubuntu bionic *
Mediawiki Ubuntu impish *
Mediawiki Ubuntu kinetic *
Mediawiki Ubuntu lunar *
Mediawiki Ubuntu mantic *
Mediawiki Ubuntu trusty *
Mediawiki Ubuntu xenial *

References