Lucene search
K

5 matches found

OSV
OSV
added 2022/01/18 8:15 p.m.5 views

DEBIAN-CVE-2022-21696

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at the end of the nam...

4.3CVSS5.4AI score0.00708EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/01/18 8:15 p.m.16 views

CVE-2022-21696

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at the end of the nam...

4.3CVSS6.3AI score0.00708EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/01/18 7:55 p.m.5 views

CVE-2022-21696 Username spoofing in OnionShare

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at the end of the nam...

4.3CVSS7.1AI score0.00708EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/01/18 7:55 p.m.25 views

CVE-2022-21696 Username spoofing in OnionShare

OnionShare is an open source tool that lets you securely and anonymously share files, host websites, and chat with friends using the Tor network. In affected versions it is possible to change the username to that of another chat participant with an additional space character at the end of the nam...

4.3CVSS4.9AI score0.00708EPSS
Exploits0References2
CVE
CVE
added 2022/01/18 7:55 p.m.87 views

CVE-2022-21696

On OnionShare, a trailing-space condition in usernames allows impersonation via the chat rename feature. The issue arises from handling of username input (improper input sanitization), enabling an adversary with access to the chat environment to impersonate another participant by appending whites...

4.3CVSS4.8AI score0.00708EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder