Vulnerability Database
Blog
FAQ
Docs
CVE-2022-0273
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-0273
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-0273.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-0273
Aliases
GHSA-vgmw-9cww-qq99
PYSEC-2022-22
Published
2022-01-30T14:15:07Z
Modified
2024-11-19T16:49:20.209281Z
Severity
6.5 (Medium)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CVSS Calculator
Summary
[none]
Details
Improper Access Control in Pypi calibreweb prior to 0.6.16.
References
https://huntr.dev/bounties/8f27686f-d698-4ab6-8ef0-899125792f13
https://github.com/janeczku/calibre-web/commit/0c0313f375bed7b035c8c0482bbb09599e16bfcf
Affected packages
Git
/
github.com/janeczku/calibre-web
Affected ranges
Type
GIT
Repo
https://github.com/janeczku/calibre-web
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Fixed
0c0313f375bed7b035c8c0482bbb09599e16bfcf
Affected versions
0.*
0.6.0
0.6.10
0.6.11
0.6.12
0.6.13
0.6.14
0.6.15
0.6.2
0.6.3
0.6.4
0.6.5
0.6.6
0.6.7
0.6.8
0.6.9
CVE-2022-0273 - OSV