Lucene search
HistoryDec 27, 2022 - 3:15 p.m.
CVE-2022-4719
cve-2022-4719
github
ikus060
rdiffweb
business logic errors
nvd
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.4 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.1%
Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.
Affected configurations
Node
ikus-softrdiffwebRange<2.5.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| ikus-soft:rdiffweb | ikus-soft rdiffweb | lt | 2.5.5 |
CNA Affected
[
{
"vendor": "ikus060",
"product": "ikus060/rdiffweb",
"versions": [
{
"version": "unspecified",
"lessThan": "2.5.5",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
veracode
veracode
Business Logic Errors
2023-01-03 12:33:16
nvd
nvd
CVE-2022-4719
2022-12-27 15:15:11
osv
osv
PYSEC-2022-43005
2022-12-27 15:15:00
rdiffweb vulnerable to Business Logic Errors
2022-12-27 15:30:19
CVE-2022-4719
2022-12-27 15:15:11
cvelist
cvelist
CVE-2022-4719 Business Logic Errors in ikus060/rdiffweb
2022-12-23 00:00:00
github
github
rdiffweb vulnerable to Business Logic Errors
2022-12-27 15:30:19
huntr
huntr
No notification triggered on sensitive actions like adding SSH key
2022-12-20 15:27:05
prion
prion
Code injection
2022-12-27 15:15:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.4 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.1%
Related for CVE-2022-4719