How severe is CVE-2022-30579?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.4 out of 10.

What type of vulnerability is CVE-2022-30579?

This is classified as CWE-918, which is a common weakness in software security.

CVE-2022-30579

HIGH Year: 2022

CVSS v3 Score

8.4

High

Weakness Type

CWE-918

View all →

Vulnerability Description

The Web Player component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace and TIBCO Spotfire Server contains a difficult to exploit vulnerability that allows a low privileged attacker with network access to execute blind Server Side Request Forgery (SSRF) on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace: version 12.0.0 and TIBCO Spotfire Server: version 12.0.0.

CVE-2012-10018

HIGH

CVSS:8.3(High)

The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in versions up to, and including 6.1, 1.0 respectively. This makes it possible for attackers to forgery...

CWE-9182012

CVE-2020-10252

HIGH

CVSS:8.3(High)

An issue was discovered in ownCloud before 10.4. Because of an SSRF issue (via the apps/files_sharing/external remote parameter), an authenticated attacker can interact with local services blindly (ak...

CWE-9182020

CVE-2020-24139

HIGH

CVSS:8.3(High)

Server-side request forgery in Wcms 0.3.2 lets an attacker send crafted requests from the back-end server of a vulnerable web application via the path parameter to wex/cssjs.php. It can help identify ...

CWE-9182020

CVE-2020-24140

HIGH

CVSS:8.3(High)

Server-side request forgery in Wcms 0.3.2 let an attacker send crafted requests from the back-end server of a vulnerable web application via the pagename parameter to wex/html.php. It can help identif...

CWE-9182020