CVE-2022-4879
4.6
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
Summary
A vulnerability was found in Forged Alliance Forever up to 3746. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Vote Handler. The manipulation leads to improper authorization. Upgrading to version 3747 is able to address this issue. The patch is named 6880971bd3d73d942384aff62d53058c206ce644. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-217555.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Forged Alliance Forever | 3746 | affected |
Weaknesses
- CWE-285: CWE-285 Improper Authorization
ADP Enrichment
CVE Program Container
Additional References
- https://vuldb.com/?id.217555
- https://vuldb.com/?ctiid.217555
- https://github.com/FAForever/fa/pull/4398
- https://github.com/FAForever/fa/commit/6880971bd3d73d942384aff62d53058c206ce644
- https://github.com/FAForever/fa/releases/tag/3747
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://vuldb.com/?id.217555
- https://vuldb.com/?ctiid.217555
- https://github.com/FAForever/fa/pull/4398
- https://github.com/FAForever/fa/commit/6880971bd3d73d942384aff62d53058c206ce644
- https://github.com/FAForever/fa/releases/tag/3747
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.