CVE-2022-41767

CVSS v3.1 5.3 (Medium)

EPSS 0.09 % (40^th)

Affected Products 1

Advisories 4

An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. When changes made by an IP address are reassigned to a user (using reassignEdits.php), the changes will still be attributed to the IP address on Special:Contributions when doing a range lookup.

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2022-12-26 06:15:11
(21 months ago)
Updated Date: 2023-05-21 22:15:14
(16 months ago)

Affected Products

Mediawiki

Mediawiki

Configuration #1

	CPE23	From	Up To
Mediawiki prior 1.35.8 version	cpe:2.3:a:mediawiki:mediawiki		< 1.35.8
Mediawiki from 1.36.0 version and prior 1.37.5 version	cpe:2.3:a:mediawiki:mediawiki	>= 1.36.0	< 1.37.5
Mediawiki from 1.38.0 version and prior 1.38.3 version	cpe:2.3:a:mediawiki:mediawiki	>= 1.38.0	< 1.38.3