Home > Vulnerability Database > CVE-2022-3376

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2022-3376

Good to know:

Date: October 6, 2022

Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.

Language: Python

Severity Score

5.3

Related Resources (4)

Url: https://github.com/ikus060/rdiffweb/commit/2ffc2af65c8f8113b06e0b89929c604bcdf844b9

Url: https://huntr.dev/bounties/a9021e93-6d18-4ac1-98ce-550c4697a4ed

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-3376

Url: https://www.mend.io/vulnerability-database/CVE-2022-3376

Severity Score

5.3

Weakness Type (CWE)

Weak Password Requirements

CWE-521

Top Fix

Upgrade Version

Upgrade to version 2.5.0a4

CVSS v3.1

Base Score:	5.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	LOW
Availability (A):	NONE

Do you need more information?

Contact Us