How severe is CVE-2022-50925?

CVE-2022-50925 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2022-50925

9.8CRITICAL

Prowise Reflect version 1.0.9 contains a remote keystroke injection vulnerability that allows attackers to send keyboard events through an exposed WebSocket on port 8082. Attackers can craft malicious

게시됨: 1/13/2026업데이트됨: 1/14/2026

설명

Prowise Reflect version 1.0.9 contains a remote keystroke injection vulnerability that allows attackers to send keyboard events through an exposed WebSocket on port 8082. Attackers can craft malicious web pages to inject keystrokes, opening applications and typing arbitrary text by sending specific WebSocket messages.

AI 분석AI 기반

참조

https://www.exploit-db.com/exploits/50796
https://www.prowise.com/
https://www.vulncheck.com/advisories/prowise-reflect-remote-keystroke-injection
https://www.exploit-db.com/exploits/50796