Skip to main content

Nameless CVE-2022-2821

HIGH
Missing Critical Step in Authentication (CWE-304)
2022-08-15 security@huntr.dev
7.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

1
CVE Published
Aug 15, 2022 - 11:21 nvd
HIGH 7.5

DescriptionNVD

Missing Critical Step in Authentication in GitHub repository namelessmc/nameless prior to v2.0.2.

AnalysisAI

Missing Critical Step in Authentication in GitHub repository namelessmc/nameless prior to v2.0.2. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Technical ContextAI

This vulnerability is classified under CWE-304. Missing Critical Step in Authentication in GitHub repository namelessmc/nameless prior to v2.0.2. Affected products include: Namelessmc Nameless.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2025-32389 HIGH POC
8.6 Apr 18

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Rated high severity (CVSS 8.6), thi

CVE-2022-2820 HIGH POC
8.2 Aug 15

Session Fixation in GitHub repository namelessmc/nameless prior to v2.0.2. Rated high severity (CVSS 8.2), this vulnerab

CVE-2025-29784 HIGH POC
7.5 Apr 18

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Rated high severity (CVSS 7.5), thi

CVE-2025-30357 HIGH POC
7.3 Apr 18

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Rated high severity (CVSS 7.3), thi

CVE-2025-31118 HIGH POC
7.1 Apr 18

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Rated high severity (CVSS 7.1), thi

CVE-2025-30158 HIGH POC
7.1 Apr 18

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Rated high severity (CVSS 7.1), thi

CVE-2025-31120 MEDIUM POC
5.3 Apr 18

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Rated medium severity (CVSS 5.3), t

CVE-2026-33398 HIGH
7.1 Jun 02

Broken access control in NamelessMC 2.2.4 (Minecraft community website software) allows any low-privileged authenticated

CVE-2026-34460 MEDIUM
5.4 Jun 02

OAuth login CSRF in NamelessMC 2.2.4 and prior enables session swapping by exploiting the absence of server-side state p

CVE-2025-54421 HIGH POC
7.2 Aug 18

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Rated high severity (CVSS 7.2), thi

CVE-2025-54118 MEDIUM POC
5.3 Aug 18

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Rated medium severity (CVSS 5.3), t

CVE-2025-54117 CRITICAL POC
9.0 Aug 18

NamelessMC is a free, easy to use & powerful website software for Minecraft servers. Rated critical severity (CVSS 9.0),

Share

CVE-2022-2821 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy