1. Home
  2. Vulnerabilities
  3. CVE-2022-37423

CVE-2022-37423

CVSS v3.1 7.5 (High)
75% Progress
EPSS 0.22 % (60th)
0.22% Progress
Affected Products 1
Advisories 1
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software Graph Web & Social Timeline

Neo4j APOC (Awesome Procedures on Cypher) before 4.3.0.7 and 4.x before 4.4.0.8 allows Directory Traversal to sibling directories via apoc.log.stream.

Weaknesses
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2022-08-12 15:15:16
(2 years ago)
Updated Date
2022-08-16 15:29:05
(2 years ago)

Affected Products

Neo4j

Configuration #1

    CPE23 From Up To
  Neo4j Awesome Procedures on Cypher prior 4.3.0.7 version cpe:2.3:a:neo4j:awesome_procedures_on_cypher < 4.3.0.7
  Neo4j Awesome Procedures on Cypher from 4.4.0.0 version and prior 4.4.0.8 version cpe:2.3:a:neo4j:awesome_procedures_on_cypher >= 4.4.0.0 < 4.4.0.8