{"id":"CVE-2022-47924","details":"An high privileged attacker may pass crafted arguments to the validate function of csaf-validator-lib of a locally installed Secvisogram in versions \u003c 0.1.0 wich can result in arbitrary code execution and DoS once the users triggers the validation.\n\n","modified":"2026-07-09T05:13:37.799224Z","published":"2023-03-27T14:15:07.690Z","references":[{"type":"ADVISORY","url":"https://wid.cert-bund.de/.well-known/csaf/white/2022/bsi-2022-0004.json"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/secvisogram/csaf-validator-lib","events":[{"introduced":"0"},{"fixed":"ecb02f33637b3133bb8ae9e684d67b9a04d447c2"}],"database_specific":{"source":"CPE_RANGE","cpe":"cpe:2.3:a:csaf-validator-lib_project:csaf-validator-lib:*:*:*:*:*:*:*:*","extracted_events":[{"introduced":"0"},{"fixed":"0.1.0"}]}}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-47924.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H"}]}