Lucene search
GoogleOSV:PYSEC-2022-43000HistoryNov 14, 2022 - 9:15 p.m.
PYSEC-2022-43000
2022-11-1421:15:00
Google
osv.dev
5
github repository
session expiration
ikus060/rdiffweb
version 2.5.0
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
57.1%
Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.
Related
osv
osv
rdiffweb vulnerable to Insufficient Session Expiration
2022-11-15 12:00:17
CVE-2022-3362
2022-11-14 21:15:16
veracode
veracode
Improper Session Management
2022-11-16 03:15:21
cvelist
cvelist
CVE-2022-3362 Insufficient Session Expiration in ikus060/rdiffweb
2022-11-14 00:00:00
nvd
nvd
CVE-2022-3362
2022-11-14 21:15:16
cve
cve
CVE-2022-3362
2022-11-14 21:15:16
github
github
rdiffweb vulnerable to Insufficient Session Expiration
2022-11-15 12:00:17
huntr
huntr
Session does not expire on password reset
2022-09-29 19:00:03
prion
prion
Session fixation
2022-11-14 21:15:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
57.1%
Related for OSV:PYSEC-2022-43000