CVE-2022-32175

Published Oct 11, 2022

Last updated a year ago

CVSS medium 5.4

Overview

Description: In AdGuardHome, versions v0.95 through v0.108.0-b.13 are vulnerable to Cross-Site Request Forgery (CSRF), in the custom filtering rules functionality. An attacker can persuade an authorized user to follow a malicious link, resulting in deleting/modifying the custom filtering rules.
Source: vulnerabilitylab@mend.io
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 5.4
Impact score: 2.5
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
Severity: MEDIUM

Weaknesses

vulnerabilitylab@mend.io: CWE-352

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E695CFB-B1DF-41C1-BA70-7A265433CB0A",
            "versionEndExcluding": "0.108",
            "versionStartIncluding": "0.95"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14E5C5F8-F953-46F8-8A09-D3ADD8D20D98"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9817B935-B524-477A-AD09-8FAA10766BB2"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "483D39D7-80FC-44AB-9DFE-AFDAE36D062B"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta11:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "254E666F-03B2-4165-8B99-F952DFAB8C9D"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta12:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A73C9B8-9DA5-408F-9606-56CEF156D778"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2FA24D7-69D9-4754-8BFB-4C7FCBD32C21"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48BDB15F-0B8F-4924-9D10-1D9553E00C14"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E1D1A5BC-FF61-4DAD-B151-F54744B46F21"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF880BA6-46D1-46E2-9CCD-29CB7723B25F"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81C91E59-C03C-45B9-A453-7921D4345B86"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE4E8637-A8F0-411A-9106-6FD4B2B64447"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta8:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27DC4B6A-9C14-4348-AC6E-57EB022467FA"
          },
          {
            "criteria": "cpe:2.3:a:adguard:adguardhome:0.108:beta9:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "58D1AB54-26E8-4A60-91E2-4105E186533B"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References