Vulnerability Database

Published: May 25, 2022
Updated: Aug 9, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-29405" target="_blank" rel="noopener"> CVE-2022-29405
GHSA: <a href="https://github.com/advisories/GHSA-5hqc-x78w-3cmw" target="_blank" rel="noopener"> GHSA-5hqc-x78w-3cmw
Severity: Medium
Exploit:

296,746

Total vulnerabilities in the database

In Apache Archiva, any registered user can reset password for any users. This is fixed in Archiva 2.2.8

CVSS v3:

CVSS v2:

CWEs:

Software	From	Fixed in
apache / archiva	-	2.2.8
org.apache.archiva / archiva	-	2.2.8

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.