exploitDog

GHSA-967w-wxwg-hhh6

Опубликовано: 11 окт. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Vulnerability of package names' public keys not being verified in the security module.Successful exploitation of this vulnerability may affect service confidentiality.

Vulnerability of package names' public keys not being verified in the security module.Successful exploitation of this vulnerability may affect service confidentiality.

Ссылки

EPSS

Процентиль: 24%

0.00081

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2023-44093

CVSS3: 7.5

nvd

больше 2 лет назад

Vulnerability of package names' public keys not being verified in the security module.Successful exploitation of this vulnerability may affect service confidentiality.

EPSS

Процентиль: 24%

0.00081

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200