Lucene search
GitHub Advisory DatabaseGHSA-G594-55MP-F6Q8HistoryDec 12, 2022 - 6:30 p.m.
Improper Privilege Management in rdiffweb
2022-12-1218:30:27
CWE-269
GitHub Advisory Database
github.com
16
privilege management
unauthorized access
github repository
rdiffweb
security vulnerability
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
57.2%
Unauthorized access to settings update, logs , history, delete etc in GitHub repository ikus060/rdiffweb prior to 2.5.2.
Affected configurations
Node
rdiffwebrdiffwebRange<2.5.2
Related
prion
prion
Input validation
2022-12-12 18:15:00
cvelist
cvelist
CVE-2022-4314 Improper Privilege Management in ikus060/rdiffweb
2022-12-06 00:00:00
huntr
huntr
osv
osv
PYSEC-2022-43002
2022-12-12 18:15:00
CVE-2022-4314
2022-12-12 18:15:13
Improper Privilege Management in rdiffweb
2022-12-12 18:30:27
nvd
nvd
CVE-2022-4314
2022-12-12 18:15:13
veracode
veracode
Privilege Escalation
2022-12-13 05:23:03
cve
cve
CVE-2022-4314
2022-12-12 18:15:13
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
57.2%
Related for GHSA-G594-55MP-F6Q8