Lucene search
Veracode Vulnerability DatabaseVERACODE:33870HistoryJan 24, 2022 - 7:42 a.m.
User Impersonation
2022-01-2407:42:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
onionshare_cli
vulnerability
user impersonation
attacker
chat environment
name string manipulation
EPSS
0.001
Percentile
19.4%
onionshare_cli is vulnerable to user impersonation. An attacker with access to the chat environment is able to update the name string to that of another user by appending a space character at the end of it, allowing to impersonate other participants.
Related
cnvd
cnvd
OnionShare input validation error vulnerability
2022-01-19 00:00:00
ubuntucve
ubuntucve
CVE-2022-21696
2022-01-18 00:00:00
cvelist
cvelist
CVE-2022-21696 Username spoofing in OnionShare
2022-01-18 19:55:10
debiancve
debiancve
CVE-2022-21696
2022-01-18 20:15:07
github
github
Username spoofing in OnionShare
2022-01-21 23:20:14
nvd
nvd
CVE-2022-21696
2022-01-18 20:15:07
osv
osv
CVE-2022-21696
2022-01-18 20:15:07
PYSEC-2022-47
2022-01-18 20:15:00
Username spoofing in OnionShare
2022-01-21 23:20:14
prion
prion
Design/Logic Flaw
2022-01-18 20:15:00
cve
cve
CVE-2022-21696
2022-01-18 20:15:07