ikus060 rdiffweb up to 2.4.5 cross-site request forgery

A vulnerability classified as problematic has been found in ikus060 rdiffweb up to 2.4.5. Affected is some unknown functionality. Upgrading to version 2.4.6 eliminates this vulnerability. Applying the patch 20fc0d304412cc569b21f31e52cb8b94094d6314 is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

140

Field

exploit_price_0day1
vulnerability_cvss3_meta_tempscore1
vulnerability_cvss3_meta_basescore1
vulnerability_cvss3_vuldb_tempscore1
vulnerability_cvss3_vuldb_basescore1

Commit Conf

90%50
50%10

Approve Conf

90%50
80%10
IDCommitedUserFieldChangeRemarksAcceptedReasonC
1302394209/23/2022VulD...price_0day$0-$5ksee exploit price documentation09/23/2022accepted
90
1302394109/23/2022VulD...cvss3_meta_tempscore5.1see CVSS documentation09/23/2022accepted
90
1302394009/23/2022VulD...cvss3_meta_basescore5.1see CVSS documentation09/23/2022accepted
90
1302393909/23/2022VulD...cvss3_vuldb_tempscore4.1see CVSS documentation09/23/2022accepted
90
1302393809/23/2022VulD...cvss3_vuldb_basescore4.3see CVSS documentation09/23/2022accepted
90
1302393709/23/2022VulD...cvss2_vuldb_tempscore4.4see CVSS documentation09/23/2022accepted
90
1302393609/23/2022VulD...cvss2_vuldb_basescore5.0see CVSS documentation09/23/2022accepted
90
1302393509/23/2022VulD...cvss3_cna_basescore6.8see CVSS documentation09/23/2022accepted
90
1302393409/23/2022VulD...cvss3_nvd_basescore4.3nist.gov09/23/2022accepted
90
1302393309/23/2022VulD...cvss3_vuldb_eXderived from historical data09/23/2022accepted
80
1302393209/23/2022VulD...cvss2_vuldb_eNDderived from historical data09/23/2022accepted
80
1302393109/23/2022VulD...cvss2_vuldb_rlOFderived from vuldb v3 vector09/23/2022accepted
80
1302393009/23/2022VulD...cvss2_vuldb_rcCderived from vuldb v3 vector09/23/2022accepted
80
1302392909/23/2022VulD...cvss2_vuldb_aiNderived from vuldb v3 vector09/23/2022accepted
80
1302392809/23/2022VulD...cvss2_vuldb_iiPderived from vuldb v3 vector09/23/2022accepted
80
1302392709/23/2022VulD...cvss2_vuldb_ciNderived from vuldb v3 vector09/23/2022accepted
80
1302392609/23/2022VulD...cvss2_vuldb_auNderived from vuldb v3 vector09/23/2022accepted
80
1302392509/23/2022VulD...cvss2_vuldb_acLderived from vuldb v3 vector09/23/2022accepted
80
1302392409/23/2022VulD...cvss2_vuldb_avNderived from vuldb v3 vector09/23/2022accepted
80
1302392309/23/2022VulD...date1663884000 (09/23/2022)09/23/2022accepted
90

40 more entries are not shown

Want to stay up to date on a daily basis?

Enable the mail alert feature now!