EPSS
Percentile
37.9%
rdiffweb is vulnerable to denial of service. The vulnerability exists in pref_sshkeys.py due to not limiting in title length while adding SSH key which allows an attacker to cause an application crash via a malicious input.
pref_sshkeys.py
github.com/advisories/GHSA-xhw9-4wqq-x67v
github.com/ikus060/rdiffweb/commit/626cca1b75b6c587afd4241a9692e8929b1921a5
huntr.dev/bounties/f9fedf94-41c9-49c4-8552-e407123a44e7
huntr.dev/bounties/f9fedf94-41c9-49c4-8552-e407123a44e7/