Skip to content

CVE-2022-3993 | kareadita/kavita

Improper Restriction of Excessive Authentication Attempts in GitHub repository kareadita/kavita prior to 0.6.0.3. .This CVE has a CVSS3.1 score of 9.4 and a Base Severity of CRITICAL.

InfoDetails
CVE IDCVE-2022-3993
CVE StatePUBLISHED
BaseScore9.4
BaseSeverityCRITICAL
VectorStringCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
VersionNA

References for CVE-2022-3993 :
https://github.com/kareadita/kavita/commit/f8db37d3f9aa42d47e7c4f4ca839e892d3f97afb
https://huntr.dev/bounties/bebd0cd6-18ec-469c-b6ca-19ffa9db0699

Metric TypeMetric Score
AttackVector(AV)NETWORK
AttackComplexity(AC)LOW
PrivilegesRequired(PR)NONE
UserInteraction(UI)NONE
Scope(S)UNCHANGED
Confidentiality(C)HIGH
Availability(A)HIGH
Integrity(I)LOW
Tags: