Vulnerabilities > CVE-2022-3292 - Information Exposure Through Caching vulnerability in Ikus-Soft Rdiffweb

CVSS 4.6 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

low complexity

ikus-soft

CWE-524

NVD

Published: 2022-09-28

Updated: 2022-09-30

Summary

Use of Cache Containing Sensitive Information in GitHub repository ikus060/rdiffweb prior to 2.4.8.

Vulnerable Configurations

Part	Description	Count
Application	Ikus-Soft Ikus Soft Rdiffweb 0.6.4 Ikus Soft Rdiffweb 0.6.5 Ikus Soft Rdiffweb 0.7.0 Ikus Soft Rdiffweb 0.7.1 Ikus Soft Rdiffweb 0.7.2 Ikus Soft Rdiffweb 0.8.1 Ikus Soft Rdiffweb 0.8.2 Ikus Soft Rdiffweb 0.8.3 Ikus Soft Rdiffweb 0.9.1 Ikus Soft Rdiffweb 0.9.2 Ikus Soft Rdiffweb 0.9.3 Ikus Soft Rdiffweb 0.9.4 Ikus Soft Rdiffweb 0.9.5 Ikus Soft Rdiffweb 0.10.0 Ikus Soft Rdiffweb 0.10.2 Ikus Soft Rdiffweb 0.10.4 Ikus Soft Rdiffweb 0.10.5 Ikus Soft Rdiffweb 0.10.6 Ikus Soft Rdiffweb 0.10.7 Ikus Soft Rdiffweb 0.10.8 Ikus Soft Rdiffweb 0.10.9 Ikus Soft Rdiffweb 1.0.0 Ikus Soft Rdiffweb 1.0.1 Ikus Soft Rdiffweb 1.0.2 Ikus Soft Rdiffweb 1.0.3 Ikus Soft Rdiffweb 1.1.0 Ikus Soft Rdiffweb 1.2.0 Ikus Soft Rdiffweb 1.2.1 Ikus Soft Rdiffweb 1.2.2 Ikus Soft Rdiffweb 1.3.0 Ikus Soft Rdiffweb 1.3.1 Ikus Soft Rdiffweb 1.3.2 Ikus Soft Rdiffweb 1.4.0 Ikus Soft Rdiffweb 1.4.1 Ikus Soft Rdiffweb 1.5.0 Ikus Soft Rdiffweb 1.5.1 Ikus Soft Rdiffweb 1.6.0 Ikus Soft Rdiffweb 2.0.0 Ikus Soft Rdiffweb 2.0.1 Ikus Soft Rdiffweb 2.0.2 Ikus Soft Rdiffweb 2.0.3 Ikus Soft Rdiffweb 2.1.0 Ikus Soft Rdiffweb 2.2.0 Ikus Soft Rdiffweb 2.2.1 Ikus Soft Rdiffweb 2.3.0 Ikus Soft Rdiffweb 2.3.1 Ikus Soft Rdiffweb 2.3.2 Ikus Soft Rdiffweb 2.3.3 Ikus Soft Rdiffweb 2.3.4 Ikus Soft Rdiffweb 2.3.5 Ikus Soft Rdiffweb 2.3.6 Ikus Soft Rdiffweb 2.3.7 Ikus Soft Rdiffweb 2.3.8 Ikus Soft Rdiffweb 2.3.9 Ikus Soft Rdiffweb 2.4.0 Ikus Soft Rdiffweb 2.4.1 Ikus Soft Rdiffweb 2.4.2 Ikus Soft Rdiffweb 2.4.3 Ikus Soft Rdiffweb 2.4.4 Ikus Soft Rdiffweb 2.4.5 Ikus Soft Rdiffweb 2.4.6 Ikus Soft Rdiffweb 2.4.7	103

Common Weakness Enumeration (CWE)

CWE-524 - Information Exposure Through Caching

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References