CVE-2022-40309 | Severity.io

Description

Users with write permissions to a repository can delete arbitrary directories.

Related CPE's

Vulnerable

References

Mailing ListThird Party Advisory

Issue TrackingMailing ListVendor Advisory

Mailing ListThird Party Advisory

Issue TrackingMailing ListVendor Advisory

Weaknesses

Primary

NVD-CWE-noinfo

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

4.3 · Medium

Information

Source identifier

Vulnerability status

Modified

Published

2022-11-15T12:15:11.000Z

3 years ago

Last modified

2025-04-30T14:15:26.320Z

11 months ago