Lucene search

GitHub Advisory DatabaseGHSA-83PM-7V48-5JP4

HistoryDec 27, 2022 - 3:30 p.m.

rdiffweb vulnerable to Special Element Injection

2022-12-2715:30:19

CWE-75

GitHub Advisory Database

github.com

rdiffweb

ssh key

injection

vulnerability

malicious websites

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

EPSS

0.001

Percentile

30.3%

JSON

In rdiffweb prior to 2.5.5, lack of sanitisation of characters in SSH key name could allow attacker to inject a hyperlink injection that could allow attacker to redirect victim to malicious websites.

Affected configurations

Vulners

Node

rdiffwebrdiffwebRange<2.5.5

VendorProductVersionCPE
rdiffwebrdiffweb*cpe:2.3:a:rdiffweb:rdiffweb:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
rdiffweb	rdiffweb	*	cpe:2.3:a:rdiffweb:rdiffweb::::::::

References

github.com/advisories/GHSA-83pm-7v48-5jp4

github.com/ikus060/rdiffweb/commit/6afaae56a29536f0118b3380d296c416aa6d078d

huntr.dev/bounties/3c48ef5d-da4d-4ee4-aaca-af65e7273720

nvd.nist.gov/vuln/detail/CVE-2022-4721

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

EPSS

0.001

Percentile

30.3%

JSON

Related for GHSA-83PM-7V48-5JP4