CVE-2022-0848

CRITICAL

Part-db < 0.5.11 - OS Command Injection

Title source: rule

OS Command Injection in GitHub repository part-db/part-db prior to 0.5.11.

exploitdb WORKING POC

by Chetanya Sharma · bashwebappsphp

nomisec WORKING POC 2 stars

by dskmehra · poc

nomisec WORKING POC 1 stars

by Lay0us · poc

inthewild

poc

CVSS v3 9.8

EPSS 0.4026

EPSS Percentile 97.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-78

Status published

Products (1)

part-db_project/part-db < 0.5.11

Published Mar 04, 2022

Tracked Since Feb 18, 2026