exploitDog

GHSA-8mjg-c853-xc3w

Опубликовано: 05 сент. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 4.7

Описание

An issue was discovered in Trusted Firmware-M through 2.0.0. The lack of argument verification in the logging subsystem allows attackers to read sensitive data via the login function.

An issue was discovered in Trusted Firmware-M through 2.0.0. The lack of argument verification in the logging subsystem allows attackers to read sensitive data via the login function.

Ссылки

EPSS

Процентиль: 26%

0.0009

Низкий

4.7 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2023-51712

CVSS3: 4.7

nvd

больше 1 года назад

An issue was discovered in Trusted Firmware-M through 2.0.0. The lack of argument verification in the logging subsystem allows attackers to read sensitive data via the login function.

CVE-2023-51712

CVSS3: 4.7

debian

больше 1 года назад

An issue was discovered in Trusted Firmware-M through 2.0.0. The lack ...

EPSS

Процентиль: 26%

0.0009

Низкий

4.7 Medium

CVSS3

CVE ID