GHSA-7543-mr7h-6v86

Опубликовано: 02 сент. 2020

Источник: github

Github: Прошло ревью

Описание

Improper Authorization in googleapis

Versions of googleapis prior to 39.1.0 are vulnerable to Improper Authorization. Setting credentials to one client may apply to all clients which may cause requests to be sent with the incorrect credentials.

Recommendation

Upgrade to version 39.1.0.

Ссылки

https://github.com/googleapis/google-api-nodejs-client/issues/1594
https://www.npmjs.com/advisories/791

Пакеты

Наименование

googleapis

npm

Затронутые версииВерсия исправления

< 39.1.0

39.1.0

Дефекты

CWE-285

Дефекты

CWE-285