exploitDog

GHSA-5h5w-q6q9-mgq7

Опубликовано: 30 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.6

Описание

easyMINE before 2019-12-05 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.io.

easyMINE before 2019-12-05 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.io.

Ссылки

EPSS

Процентиль: 32%

0.00125

Низкий

5.6 Medium

CVSS3

CVE ID

Дефекты

CWE-300

Связанные уязвимости

CVE-2019-19751

CVSS3: 5.6

nvd

почти 2 года назад

easyMINE before 2019-12-05 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.io.

EPSS

Процентиль: 32%

0.00125

Низкий

5.6 Medium

CVSS3

CVE ID

Дефекты

CWE-300