Lucene search
GitHub Advisory DatabaseGHSA-C4RV-2J6X-PQ7XHistorySep 29, 2023 - 3:30 p.m.
Rdiffweb Allocation of Resources Without Limits or Throttling vulnerability
2023-09-2915:30:27
CWE-770
GitHub Advisory Database
github.com
13
rdiffweb github repository ikus060/rdiffweb software 2.8.4.
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
24.0%
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.4.
Affected configurations
Node
rdiffwebrdiffwebRange<2.8.4
Related
osv
osv
Rdiffweb Allocation of Resources Without Limits or Throttling vulnerability
2023-09-29 15:30:27
PYSEC-2023-186
2023-09-29 14:15:00
CVE-2023-5289
2023-09-29 14:15:11
cve
cve
CVE-2023-5289
2023-09-29 14:15:11
cvelist
cvelist
prion
prion
Design/Logic Flaw
2023-09-29 14:15:00
vulnrichment
vulnrichment
huntr
huntr
No rate limiting on creating access token
2023-09-19 14:49:34
nvd
nvd
CVE-2023-5289
2023-09-29 14:15:11
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
24.0%
Related for GHSA-C4RV-2J6X-PQ7X