CVE-2022-3362
6.1
CVSS:3.0/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Summary
Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| ikus060 | ikus060/rdiffweb | unspecified < 2.5.0 | affected |
Weaknesses
- CWE-613: CWE-613 Insufficient Session Expiration
ADP Enrichment
CVE Program Container
Additional References
- https://huntr.dev/bounties/ca428c31-858d-47fa-adc9-2a59f8e8b2b1
- https://github.com/ikus060/rdiffweb/commit/6efb995bc32c8a8e9ad755eb813dec991dffb2b8
CISA ADP Vulnrichment
- SSVC:
- Exploitation: poc
- Automatable: no
- Technical Impact: total
References
- https://huntr.dev/bounties/ca428c31-858d-47fa-adc9-2a59f8e8b2b1
- https://github.com/ikus060/rdiffweb/commit/6efb995bc32c8a8e9ad755eb813dec991dffb2b8
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.