EPSS
Percentile
53.9%
rdiffweb contains business logic errors. A privileged local attacker is able to disable multi factor authentication, which leads to unauthorized access.
github.com/ikus060/rdiffweb/commit/c27c46bac656b1da74f28eac1b52dfa5df76e6f2
huntr.dev/bounties/b8a40ba6-2452-4abe-a80a-2d065ee8891e