Question 1

What is CVE-2022-47927 — CVE-2022-47927?

Accepted Answer

An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. When installing with a pre-existing data directory that has weak permissions, the SQLite files are created with file mode 0644, i.e., world readable to local users.

Question 2

What is the authoritative source for CVE-2022-47927?

Accepted Answer

CVE-2022-47927 (CVE-2022-47927) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	5.5 ()
Vector	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS	0.27% probability of exploitation · percentile 18.3% · 2026-06-19T12:03:05Z
Last modified	2026-06-17

CVE-2022-47927CVE-2022-47927

Description

Scoring