CVE-2022-3363
First published: Wed Oct 26 2022(Updated: )
Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7.
Credit: security@huntr.dev
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ikus-soft Rdiffweb | <2.5.0 | |
| Ikus-soft Rdiffweb | =2.5.0-alpha1 | |
| Ikus-soft Rdiffweb | =2.5.0-alpha2 | |
| Ikus-soft Rdiffweb | =2.5.0-alpha3 | |
| Ikus-soft Rdiffweb | =2.5.0-alpha4 | |
| Ikus-soft Rdiffweb | =2.5.0-alpha5 | |
| Ikus-soft Rdiffweb | =2.5.0-alpha6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-3363?
The severity of CVE-2022-3363 is critical with a score of 9.8.
What is the affected software for CVE-2022-3363?
The affected software for CVE-2022-3363 is Ikus-soft Rdiffweb prior to version 2.5.0.
How do I fix CVE-2022-3363?
To fix CVE-2022-3363, update your installation of Ikus-soft Rdiffweb to version 2.5.0 or above.
What is the Common Weakness Enumeration (CWE) ID associated with CVE-2022-3363?
The Common Weakness Enumeration (CWE) ID associated with CVE-2022-3363 is CWE-840.
Where can I find more information about CVE-2022-3363?
You can find more information about CVE-2022-3363 at the following references: - [GitHub Commit](https://github.com/ikus060/rdiffweb/commit/c27c46bac656b1da74f28eac1b52dfa5df76e6f2) - [Huntr Bounty](https://huntr.dev/bounties/b8a40ba6-2452-4abe-a80a-2d065ee8891e)
- collector/nvd-index
- agent/weakness
- agent/type
- vendor/ikus-soft
- canonical/ikus-soft rdiffweb
- version/ikus-soft rdiffweb/2.5.0-alpha1
- version/ikus-soft rdiffweb/2.5.0-alpha2
- version/ikus-soft rdiffweb/2.5.0-alpha3
- version/ikus-soft rdiffweb/2.5.0-alpha4
- version/ikus-soft rdiffweb/2.5.0-alpha5
- version/ikus-soft rdiffweb/2.5.0-alpha6