Lucene search
@huntrdevCVELIST:CVE-2023-4138HistoryAug 03, 2023 - 1:41 p.m.
CVE-2023-4138 Allocation of Resources Without Limits or Throttling in ikus060/rdiffweb
2023-08-0313:41:50
CWE-770
@huntrdev
www.cve.org
cve-2023-4138
resource allocation
ikus060/rdiffweb
github
risk
4.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
0.0005 Low
EPSS
Percentile
17.1%
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.0.
CNA Affected
[
{
"vendor": "ikus060",
"product": "ikus060/rdiffweb",
"versions": [
{
"version": "unspecified",
"lessThan": "2.8.0",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
huntr
huntr
No rate limit on send report functionality results in an email spam
2023-05-04 12:20:27
veracode
veracode
Email Spamming
2023-08-07 02:18:37
osv
osv
RDiffWeb vulnerable to Allocation of Resources Without Limits or Throttling
2023-08-03 18:30:35
CVE-2023-4138
2023-08-03 15:15:36
prion
prion
Design/Logic Flaw
2023-08-03 15:15:00
github
github
RDiffWeb vulnerable to Allocation of Resources Without Limits or Throttling
2023-08-03 18:30:35
cve
cve
CVE-2023-4138
2023-08-03 15:15:36
nvd
nvd
CVE-2023-4138
2023-08-03 15:15:36
4.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
0.0005 Low
EPSS
Percentile
17.1%
Related for CVELIST:CVE-2023-4138