CVE-2022-22821 LOW

CVE-2022-22821

Vendor N/A
Product n/a
Published January 8, 2022
Last update August 3, 2024

CVSS base score

2.0/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction Required
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AC:L/AV:L/A:N/C:N/I:L/PR:H/S:U/UI:R

What the vulnerability does

01Description

NVIDIA NeMo before 1.6.0 contains a vulnerability in ASR WebApp, in which ../ Path Traversal may lead to deletion of any directory when admin privileges are available.

Key dates

02Disclosure timeline

January 8, 2022 CVE published
August 3, 2024 Record updated