Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:37576
HistoryOct 16, 2022 - 11:39 p.m.

Privilege Escalation

2022-10-1623:39:48
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
rdiffweb
privilege escalation
origin validation
set_headers function
secure_headers.py
malicious user
insufficient validations

EPSS

0.002

Percentile

59.6%

JSON

rdiffweb is vulnerable to Privilege Escalation. An origin validation error allows a malicious user to elevate their privileges, due to insufficient validations in set_headers function in tools/secure_headers.py.

Related

osv 2
cvelist 1
prion 1
nvd 1
huntr 1
cve 1
github 1
osv
osv
Origin Validation Error in rdiffweb
2022-10-14 12:00:17
CVE-2022-3457
2022-10-13 20:15:09
cvelist
cvelist
CVE-2022-3457 Origin Validation Error in ikus060/rdiffweb
2022-10-13 00:00:00
prion
prion
Input validation
2022-10-13 20:15:00
nvd
nvd
CVE-2022-3457
2022-10-13 20:15:09
huntr
huntr
Origin validation Bypass
2022-10-06 09:26:35
cve
cve
CVE-2022-3457
2022-10-13 20:15:09
github
github
Origin Validation Error in rdiffweb
2022-10-14 12:00:17

EPSS

0.002

Percentile

59.6%

JSON
Related for VERACODE:37576
osv2cvelist1prion1nvd1huntr1cve1github1