CVE Vulnerabilities

CVE-2022-38165

Published: Nov 17, 2022 | Modified: Nov 22, 2022

CVSS 3.x

9.8

CRITICAL

Source:

NVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS 2.x

RedHat/V2

RedHat/V3

Ubuntu

Additional information

NVD	https://nvd.nist.gov/vuln/detail/CVE-2022-38165
CWE	https://cwe.mitre.org/data/definitions/.html

Arbitrary file write in F-Secure Policy Manager through 2022-08-10 allows unauthenticated users to write the file with the contents in arbitrary locations on the F-Secure Policy Manager Server.

Affected Software

Name	Vendor	Start Version	End Version
F-secure_policy_manager	Withsecure	- (including)	- (including)

References

https://www.withsecure.com/en/support/security-advisories/cve-2022-38165

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.