Skip to content

Missing rate limit on rdiffweb

Moderate severity GitHub Reviewed Published Oct 14, 2022 to the GitHub Advisory Database • Updated Jan 28, 2023

Package

pip rdiffweb (pip)

Affected versions

< 2.5.0

Patched versions

2.5.0

Description

Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.

References

Published by the National Vulnerability Database Oct 13, 2022
Published to the GitHub Advisory Database Oct 14, 2022
Reviewed Oct 14, 2022
Last updated Jan 28, 2023

Severity

Moderate

EPSS score

0.221%
(60th percentile)

Weaknesses

CVE ID

CVE-2022-3456

GHSA ID

GHSA-92gf-p376-6r9r

Source code

Loading Checking history
See something to contribute? Suggest improvements for this vulnerability.