exploitDog

GHSA-9x5c-g8wh-rgrw

Опубликовано: 23 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An improper certificate validation vulnerability exists in ToDesktop Builder v0.32.1 This vulnerability allows an unauthenticated, on-path attacker to spoof backend responses by exploiting insufficient certificate validation.

An improper certificate validation vulnerability exists in ToDesktop Builder v0.32.1 This vulnerability allows an unauthenticated, on-path attacker to spoof backend responses by exploiting insufficient certificate validation.

Ссылки

EPSS

Процентиль: 2%

0.00014

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2025-67229

CVSS3: 9.8

nvd

16 дней назад

An improper certificate validation vulnerability exists in ToDesktop Builder v0.32.1 This vulnerability allows an unauthenticated, on-path attacker to spoof backend responses by exploiting insufficient certificate validation.

EPSS

Процентиль: 2%

0.00014

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-295