CVE-2022-3295: rdiffweb allows unlimited length of root directory name, which could result in DoS
7.5
CVSS Score
3.1
Basic Information
CVE ID
GHSA ID
EPSS Score
0.15928%
CWE
Published
9/27/2022
Updated
10/25/2024
KEV Status
No
Technology
Python
Technical Details
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
---|---|---|---|
rdiffweb | pip | >= 0, < 2.4.8 | 2.4.8 |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The vulnerability stemmed from missing length validation on the root directory field in administrative user management. The commit adds length validators to UserForm's user_root field (max=260) and related tests. The pre-patch version of UserForm in page_admin.py contained the vulnerable field definition without constraints. The process_formdata method would process unchecked user input for this field. The tests added in test_page_admin.py (test_add_with_user_root_too_long) specifically validate this fix, confirming the attack vector.