exploitDog

GHSA-7pc9-4xmj-8wv3

Опубликовано: 25 окт. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.

The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.

Ссылки

EPSS

Процентиль: 40%

0.00186

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-269

Связанные уязвимости

CVE-2023-39740

CVSS3: 8.2

nvd

больше 2 лет назад

The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.

EPSS

Процентиль: 40%

0.00186

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-269