How severe is CVE-2022-46901?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.5 out of 10.

What type of vulnerability is CVE-2022-46901?

This is classified as CWE-668, which is a common weakness in software security.

CVE-2022-46901

HIGH Year: 2022

CVSS v3 Score

7.5

High

Weakness Type

CWE-668

View all →

Vulnerability Description

An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is an Access Control Violation for Database Operations. The Vocera Report Console contains a websocket interface that allows for the unauthenticated execution of various tasks and database functions. This includes system tasks, and backing up, loading, and clearing of the database.

CVE-2015-10004

HIGH

CVSS:7.5(High)

Token validation methods are susceptible to a timing side-channel during HMAC comparison. With a large enough number of requests over a low latency connection, an attacker may use this to determine th...

CWE-6682015

CVE-2015-9550

HIGH

CVSS:7.5(High)

An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B20150708.1646 devices. By sending a specific hel,xasf packet to the WAN interface, it is possible to op...

CWE-6682015

CVE-2017-11382

HIGH

CVSS:7.5(High)

Denial of Service vulnerability in Trend Micro Deep Discovery Email Inspector 2.5.1 allows remote attackers to delete arbitrary files on vulnerable installations, thus disabling the service. Formerly ...

CWE-6682017

CVE-2017-18073

HIGH

CVSS:7.5(High)

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 820, SD 820A, SD 835, th...

CWE-6682017