Improper Error Handling in CLA Assistant by CLA Assistant, Inc.
CVE-2022-29617

6.5MEDIUM

Key Information:

Vendor: SAP
Status: Cla Assistant
Vendor: CVE Published:; 6 June 2022

What is CVE-2022-29617?

A vulnerability exists in CLA Assistant where improper error handling can allow an authenticated user to crash the application instance. This flaw can disrupt the availability of the application, leading to potential service interruptions. Proper error handling measures are essential to prevent adverse impacts on application performance and user experience.

Affected Version(s)

CLA Assistant 2.12.0

References

https://github.com/cla-assistant/cla-assistant/security/a...

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 6, 2022
Vulnerability Reserved
Apr 25, 2022

SAP

What is CVE-2022-29617?

Affected Version(s)

References

CVSS V3.1

Timeline