rdiffweb CSRF vulnerability in profile's SSH keys can lead to unauthorized access

GHSA-vq4h-xrwc-m639 · CVE-2022-3221 · PYSEC-2022-278

Published Sep 16, 2022 · Modified Oct 25, 2024

Description

rdiffweb prior to 2.4.3 is vulnerable to Cross-Site Request Forgery (CSRF). While adding SSH public keys to the profile, the server accepts the GET request, which results in adding an SSH public key to the profile and leads to unauthorized access to the system and backups. Version 2.4.3 contains a patch for this issue.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2022-3221
WEB https://github.com/ikus060/rdiffweb/commit/9125f5a2d918fed0f3fc1c86fa94cd1779ed9f73
ADVISORY https://github.com/advisories/GHSA-vq4h-xrwc-m639
PACKAGE https://github.com/ikus060/rdiffweb
WEB https://github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2022-278.yaml
WEB https://huntr.dev/bounties/1fa1aac9-b16a-4a70-a7da-960b3908ae1d

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes