Lucene search
Veracode Vulnerability DatabaseVERACODE:37695HistoryOct 27, 2022 - 1:26 a.m.
Business Logic Errors
2022-10-2701:26:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
rdiffweb
business logic errors
privileged attacker
multi factor authentication
unauthorized access.
EPSS
0.002
Percentile
53.9%
rdiffweb contains business logic errors. A privileged local attacker is able to disable multi factor authentication, which leads to unauthorized access.
Related
osv
osv
CVE-2022-3363
2022-10-26 21:15:10
PYSEC-2022-42978
2022-10-26 21:15:00
Rdiffweb subject to Business Logic Errors
2022-10-27 12:00:27
prion
prion
Code injection
2022-10-26 21:15:00
cve
cve
CVE-2022-3363
2022-10-26 21:15:10
nvd
nvd
CVE-2022-3363
2022-10-26 21:15:10
huntr
huntr
No notification triggered on sensitive actions like 2FA enable/disable
2022-09-29 19:07:27
cvelist
cvelist
CVE-2022-3363 Business Logic Errors in ikus060/rdiffweb
2022-10-26 00:00:00
github
github
Rdiffweb subject to Business Logic Errors
2022-10-27 12:00:27