Home

CVE-2022-1727

Description

Improper Input Validation in GitHub repository jgraph/drawio prior to 18.0.6.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.053

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2022-1727 are affected in draw.io (MSI) (x64) 18.0.5Windows
Vulnerabilities CVE-2022-1727 are affected in Draw.io (x64) 18.0.5Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-352706Draw.io (MSI) (x64) (28.2.8)
PATCH-352707Draw.io (x64) (28.2.8)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234