High severityNVD Advisory· Published Sep 13, 2022· Updated Aug 3, 2024
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in ikus060/rdiffweb
CVE-2022-3174
Description
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/rdiffweb prior to 2.4.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
rdiffwebPyPI | >= 2.4.1, < 2.4.2 | 2.4.2 |
Affected products
2- ikus060/ikus060/rdiffwebv5Range: unspecified
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-mjw4-xvx6-3grgghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-3174ghsaADVISORY
- github.com/ikus060/rdiffweb/commit/f2de2371c5e13ce1c6fd6f9a1ed3e5d46b93cd7eghsax_refsource_MISCWEB
- github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2022-271.yamlghsaWEB
- huntr.dev/bounties/d8a32bd6-c76d-4140-a5ca-ef368a3058ceghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.