CVE-2022-0726 MEDIUM

CVE-2022-0726: Missing Authorization in chocobozzz/peertube

Vendor Chocobozzz
Product chocobozzz/peertube
Weakness CWE-862 · Missing authorization
Published February 23, 2022
Last update August 2, 2024
View on NVD All CVEs

CVSS base score

5.4/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

What the vulnerability does

01Description

Missing Authorization in GitHub repository chocobozzz/peertube prior to 4.1.0.

Key dates

02Disclosure timeline

February 23, 2022 CVE published
August 2, 2024 Record updated

Related vulnerabilities

04Related CVE

CVE-2026-45399 Open WebUI: Low-privilege authenticated users can enumerate and stop global background tasks, causing system-wide chat disruption CVE-2025-22385 CVE-2025-13498 Download Manager <= 3.3.32 - Missing Authorization to Authenticated (Subscriber+) Media Attachment Password Disclosure CVE-2025-39482 WordPress Eventer plugin < 3.11.4 - Broken Access Control vulnerability CVE-2026-27386 WordPress DesignThemes Directory Addon plugin <= 1.8 - Broken Access Control vulnerability