CVE-2022-45213
MEDIUMperfSONAR <4.4.6 - SSRF
Title source: llmDescription
perfSONAR before 4.4.6 inadvertently supports the parse option for a file:// URL.
Scores
CVSS v3
5.3
EPSS
0.0022
EPSS Percentile
44.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Classification
CWE
CWE-73
Status
published
Affected Products (1)
perfsonar/perfsonar
< 4.4.6
Timeline
Published
Jan 01, 2023
Tracked Since
Feb 18, 2026