CVE-2022-34914
CRITICALWebswing < 20.1.16 - Argument Injection via X-Forwarded-For Header
Title source: llmDescription
Webswing before 22.1.3 allows X-Forwarded-For header injection. The client IP address is associated with a variable in the configuration page. The {clientIp} variable can be used as an application startup argument. The X-Forwarded-For header can be manipulated by a client to store an arbitrary value that is used to replace the clientIp variable (without sanitization). A client can thus inject multiple arguments into the session startup. Systems that do not use the clientIP variable in the configuration are not vulnerable. The vulnerability is fixed in these versions: 20.1.16, 20.2.19, 21.1.8, 21.2.12, and 22.1.3.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://www.webswing.org/docs/20.1/faq/client_ip.html
Vendor Advisory x_refsource_misc
https://www.webswing.org/blog/header-injection-vulnerability-cve-2022-34914
Scores
CVSS v3
9.8
EPSS
0.0088
EPSS Percentile
54.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-74
Status
published
Products (1)
webswing/webswing
< 20.1.16
Published
Jul 08, 2022
Tracked Since
Feb 18, 2026