CVE-2022-2128 CRITICAL

CVE-2022-2128: Unrestricted Upload of File with Dangerous Type in polonel/trudesk

Vendor Polonel
Product polonel/trudesk
Weakness CWE-434 · Unrestricted file upload
Published June 20, 2022
Last update August 3, 2024

CVSS base score

9.6/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H