CVE-2022-3389

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-3389
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-3389.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-3389
Aliases
Published
2022-10-06T00:00:00Z
Modified
2026-04-02T08:04:16.983419Z
Severity
  • 8.2 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N CVSS Calculator
Summary
Path Traversal in ikus060/rdiffweb
Details

Path Traversal in GitHub repository ikus060/rdiffweb prior to 2.4.10.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/3xxx/CVE-2022-3389.json",
    "cna_assigner": "@huntrdev",
    "cwe_ids": [
        "CWE-22"
    ]
}
References

Affected packages

Git / github.com/ikus060/rdiffweb

Affected ranges

Type
GIT
Repo
https://github.com/ikus060/rdiffweb
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
323383d1db656f1b1291be529947bd943a6b0e99

Affected versions

0.*
0.10.0
0.10.2
0.10.4
0.10.5
0.10.6
0.10.7
0.10.8
0.10.9
0.7.0
0.8.1
0.8.2
0.8.3
0.9.1
0.9.2
0.9.3
0.9.4
0.9.5
1.*
1.0.0
1.0.1
1.0.2
1.0.3
1.1.0
1.2.0
1.2.1
1.2.2
1.3.0
1.3.1
1.3.2
1.4.0
1.5.0
2.*
2.0.0
2.0.1
2.0.1b2
2.0.2
2.0.3a1
2.0.3a3
2.1.0
2.10.0b1
2.10.4
2.10.5
2.10.6
2.11.0
2.11.0b1
2.11.0b2
2.11.0b3
2.11.0b4
2.11.0b5
2.11.1
2.2.1
2.3.0
2.3.1
2.3.2
2.3.3
2.3.4
2.3.5
2.3.6
2.3.7
2.3.8
2.3.9
2.4.0
2.4.1
2.4.2
2.4.3
2.4.4
2.4.5
2.4.6
2.4.7
2.4.8
2.4.9
2.5.0
2.5.1
2.5.2
2.5.3
2.5.4
2.5.5
2.5.6
2.5.7
2.5.8
2.6.0
2.6.1
2.7.0
2.7.1
2.8.0
2.8.0a8
2.8.1
2.8.2
2.8.3
2.8.4
2.8.5
2.8.6
2.8.7
2.8.8
2.8.9
2.9.0a1
2.9.0a2
2.9.0a3
2.9.0a4
2.9.0a5
2.9.1
2.9.2
2.9.3
2.9.4
2.9.5
2.9.6
2.9.7
v0.*
v0.6.4
v0.6.5
v0.7.0
v0.7.1
v0.7.2

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-3389.json"

Git / gitlab.com/ikus-soft/rdiffweb

Affected ranges

Type
GIT
Repo
https://gitlab.com/ikus-soft/rdiffweb
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
323383d1db656f1b1291be529947bd943a6b0e99
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "2.4.10"
        }
    ]
}

Affected versions

0.*
0.10.0
0.10.2
0.10.4
0.10.5
0.10.6
0.10.7
0.10.8
0.10.9
0.7.0
0.8.1
0.8.2
0.8.3
0.9.1
0.9.2
0.9.3
0.9.4
0.9.5
1.*
1.0.0
1.0.1
1.0.2
1.0.3
1.1.0
1.2.0
1.2.1
1.2.2
1.3.0
1.3.1
1.3.2
1.4.0
1.5.0
2.*
2.0.0
2.0.1
2.0.2
2.1.0
2.10.4
2.10.5
2.10.6
2.11.0
2.11.0b1
2.11.0b2
2.11.0b3
2.11.0b4
2.11.0b5
2.11.1
2.2.1
2.3.0
2.3.1
2.3.2
2.3.3
2.3.4
2.3.5
2.3.6
2.3.7
2.3.8
2.3.9
2.4.0
2.4.1
2.4.2
2.4.3
2.4.4
2.4.5
2.4.6
2.4.7
2.4.8
2.4.9
2.5.0
2.5.1
2.5.2
2.5.3
2.5.4
2.5.5
2.5.6
2.5.7
2.5.8
2.6.0
2.6.1
2.7.0
2.7.1
2.8.0
2.8.1
2.8.2
2.8.3
2.8.4
2.8.5
2.8.6
2.8.7
2.8.8
2.8.9
2.9.1
2.9.2
2.9.3
2.9.4
2.9.5
2.9.6
2.9.7
v0.*
v0.6.4
v0.6.5
v0.7.0
v0.7.1
v0.7.2

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-3389.json"