logo

Database

Improper authorization control for web services In rdiffweb

Description

rdiffweb Improper Access Control vulnerability Improper Access Control in GitHub repository ikus060/rdiffweb prior to 2.5.5.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2022-47242. NVD-2022-47243. OSV-2022-47244. GCVE-2022-4724

References

1. https://github.com/ikus060/rdiffweb/commit/c4a19cf67d575c4886171b8efcbf4675d51f39292. https://github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2022-43010.yaml3. https://huntr.dev/bounties/e6fb1931-8d9c-4895-be4a-59839b4b6445

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.