Lucene search

CVE-2022-4724

🗓️ 27 Dec 2022 15:12:15Reported by @huntrdevType

Improper Access Control in GitHub repository ikus060/rdiffweb prior to 2.5.5

Reporter	Title	Published	Views	Family All 10
Huntr	Application allows to add same SSH key among different users	23 Dec 202205:33	–	huntr
NVD	CVE-2022-4724	27 Dec 202215:15	–	nvd
Cvelist	CVE-2022-4724 Improper Access Control in ikus060/rdiffweb	23 Dec 202200:00	–	cvelist
RedhatCVE	CVE-2022-4724	5 Feb 202520:22	–	redhatcve
Github Security Blog	rdiffweb Improper Access Control vulnerability	27 Dec 202215:30	–	github
OSV	PYSEC-2022-43010	27 Dec 202215:15	–	osv
OSV	CVE-2022-4724	27 Dec 202215:15	–	osv
OSV	rdiffweb Improper Access Control vulnerability	27 Dec 202215:30	–	osv
Prion	Improper access control	27 Dec 202215:15	–	prion
Veracode	Improper Access Control	3 Jan 202310:55	–	veracode

Nvd

Node

ikus-soft rdiffwebRange<2.5.5

[
  {
    "vendor": "ikus060",
    "product": "ikus060/rdiffweb",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "2.5.5",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
github	www.github.com/ikus060/rdiffweb/commit/c4a19cf67d575c4886171b8efcbf4675d51f3929
huntr	www.huntr.dev/bounties/e6fb1931-8d9c-4895-be4a-59839b4b6445

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

27 Dec 2022 15:15Current

9.2High risk

Vulners AI Score9.2

CVSS38.4 - 9.8

EPSS0.00315

CWE-284