CVE-2022-3327 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2022-3327

Modified

More Info Official Page

Source-security@huntr.dev

Published At-20 Oct, 2022 | 00:15

Updated At-09 May, 2025 | 15:15

Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Secondary	3.0	4.5	MEDIUM	CVSS:3.0/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:N

CPE Matches

Weaknesses

CWE ID	Type	Source
CWE-306	Secondary	security@huntr.dev
CWE-306	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
https://github.com/ikus060/rdiffweb/commit/f2a32f2a9f3fb8be1a9432ac3d81d3aacdb13095	security@huntr.dev	Patch Third Party Advisory
https://huntr.dev/bounties/02207c8f-2b15-4a31-a86a-74fd2fca0ed1	security@huntr.dev	Permissions Required Third Party Advisory
https://github.com/ikus060/rdiffweb/commit/f2a32f2a9f3fb8be1a9432ac3d81d3aacdb13095	af854a3a-2127-422b-91ae-364da2661108	Patch Third Party Advisory
https://huntr.dev/bounties/02207c8f-2b15-4a31-a86a-74fd2fca0ed1	af854a3a-2127-422b-91ae-364da2661108	Permissions Required Third Party Advisory
https://huntr.com/bounties/02207c8f-2b15-4a31-a86a-74fd2fca0ed1	134c704f-9b21-4f2e-91b3-4a467353bcc0	N/A