calibre-web is vulnerable to Business Logic Errors
References
Link | Resource |
---|---|
https://github.com/janeczku/calibre-web/commit/3e0d8763c377d2146462811e3e4ccf13f0d312ce | Patch Third Party Advisory |
https://huntr.dev/bounties/1117f439-133c-4563-afb2-6cd80607bd5c | Exploit Patch Third Party Advisory |
Configurations
History
24 Jan 2022, 18:36
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
CWE | NVD-CWE-noinfo | |
CPE | cpe:2.3:a:calibre-web_project:calibre-web:*:*:*:*:*:*:*:* | |
References | (MISC) https://github.com/janeczku/calibre-web/commit/3e0d8763c377d2146462811e3e4ccf13f0d312ce - Patch, Third Party Advisory | |
References | (CONFIRM) https://huntr.dev/bounties/1117f439-133c-4563-afb2-6cd80607bd5c - Exploit, Patch, Third Party Advisory |
17 Jan 2022, 10:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-01-17 10:15
Updated : 2024-02-04 22:08
NVD link : CVE-2021-4171
Mitre link : CVE-2021-4171
CVE.ORG link : CVE-2021-4171
JSON object : View
Products Affected
calibre-web_project
- calibre-web
CWE