CVE-2022-4848

Description

usememos/memos vulnerable to Improper Verification of Source of a Communication Channel in github.com/usememos/memos

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-4848
• https://github.com/usememos/memos/commit/c9bb2b785dc5852655405d5c9ab127a2d5aa3948
• https://github.com/usememos/memos
• https://huntr.dev/bounties/25de88cc-8d0d-41a1-b069-9ef1327770bc
• https://github.com/advisories/GHSA-vh43-cc6x-prpr