CVE-2022-3362: rdiffweb vulnerable to Insufficient Session Expiration
(updated )
Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.
References
- github.com/advisories/GHSA-94qm-99qc-qwqj
- github.com/ikus060/rdiffweb
- github.com/ikus060/rdiffweb/commit/6efb995bc32c8a8e9ad755eb813dec991dffb2b8
- github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2022-43000.yaml
- huntr.dev/bounties/ca428c31-858d-47fa-adc9-2a59f8e8b2b1
- nvd.nist.gov/vuln/detail/CVE-2022-3362
Detect and mitigate CVE-2022-3362 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →