CVE-2022-0273: Incorrect Authorization in calibreweb
(updated )
calibreweb prior to version 0.6.16 contains an Incorrect Authorization vulnerability.
References
- github.com/advisories/GHSA-vgmw-9cww-qq99
- github.com/janeczku/calibre-web
- github.com/janeczku/calibre-web/commit/0c0313f375bed7b035c8c0482bbb09599e16bfcf
- github.com/pypa/advisory-database/tree/main/vulns/calibreweb/PYSEC-2022-22.yaml
- huntr.dev/bounties/8f27686f-d698-4ab6-8ef0-899125792f13
- nvd.nist.gov/vuln/detail/CVE-2022-0273
Detect and mitigate CVE-2022-0273 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →