Closed mend-bolt-for-github[bot] closed 3 months ago
:heavy_check_mark: This issue was automatically closed by Mend because the vulnerable library in the specific branch(es) was either marked as ignored or it is no longer part of the Mend inventory.
CVE-2022-26592 - High Severity Vulnerability
Vulnerable Library - opennmsopennms-source-26.0.0-1
A Java based fault and performance management system
Library home page: https://sourceforge.net/projects/opennms/
Found in HEAD commit: 593644825e582dbe07983985c91cfa4f02afa3bc
Found in base branch: master
Vulnerable Source Files (1)
/build/node_modules/node-sass/src/libsass/src/inspect.cpp
Vulnerability Details
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::has_real_parent_ref function.
Publish Date: 2023-08-22
URL: CVE-2022-26592
CVSS 3 Score Details (8.8)
Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: Required - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here.Step up your Open Source Security Game with Mend here