exploitDog

GHSA-qq98-52pp-9245

Опубликовано: 25 окт. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 2.6

Описание

When an AWS DynamoDB table is used for user attribute storage, it is possible to retrieve the attributes of another user using a maliciously crafted request

When an AWS DynamoDB table is used for user attribute storage, it is possible to retrieve the attributes of another user using a maliciously crafted request

Ссылки

EPSS

Процентиль: 41%

0.00194

Низкий

2.6 Low

CVSS3

CVE ID

Дефекты

CWE-359

Связанные уязвимости

CVE-2023-34085

CVSS3: 2.6

nvd

больше 2 лет назад

When an AWS DynamoDB table is used for user attribute storage, it is possible to retrieve the attributes of another user using a maliciously crafted request

EPSS

Процентиль: 41%

0.00194

Низкий

2.6 Low

CVSS3

CVE ID

Дефекты

CWE-359