View at Official debian advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2022-2553 not yet assigned priority: Debian including 1 source packages (booth), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.
The authfile directive in the booth config file is ignored, preventing use of authentication in communications from node to node. As a result, nodes that do not have the correct authentication key are not prevented from communicating with other nodes in the cluster.