Lucene search
@huntrdevCVELIST:CVE-2022-3362HistoryNov 14, 2022 - 12:00 a.m.
CVE-2022-3362 Insufficient Session Expiration in ikus060/rdiffweb
2022-11-1400:00:00
CWE-613
@huntrdev
www.cve.org
2
session expiration
ikus060/rdiffweb
github repository
CVSS3
6.1
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
AI Score
9.8
Confidence
High
EPSS
0.002
Percentile
57.1%
Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.
CNA Affected
[
{
"vendor": "ikus060",
"product": "ikus060/rdiffweb",
"versions": [
{
"version": "unspecified",
"lessThan": "2.5.0",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2022-3362
2022-11-14 21:15:16
cve
cve
CVE-2022-3362
2022-11-14 21:15:16
osv
osv
rdiffweb vulnerable to Insufficient Session Expiration
2022-11-15 12:00:17
PYSEC-2022-43000
2022-11-14 21:15:00
CVE-2022-3362
2022-11-14 21:15:16
veracode
veracode
Improper Session Management
2022-11-16 03:15:21
github
github
rdiffweb vulnerable to Insufficient Session Expiration
2022-11-15 12:00:17
huntr
huntr
Session does not expire on password reset
2022-09-29 19:00:03
prion
prion
Session fixation
2022-11-14 21:15:00
CVSS3
6.1
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
AI Score
9.8
Confidence
High
EPSS
0.002
Percentile
57.1%
Related for CVELIST:CVE-2022-3362