CVE-2022-0430

Опубликовано: 15 мар. 2022

Источник: nvd

CVSS3: 2.4

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository httpie/httpie prior to 3.1.0.

Ссылки

https://github.com/httpie/httpie/commit/65ab7d5caaaf2f95e61f9dd65441801c2ddee38b
Patch
Third Party Advisory
https://huntr.dev/bounties/dafb2e4f-c6b6-4768-8ef5-b396cd6a801f
Exploit
Patch
Third Party Advisory
https://github.com/httpie/httpie/commit/65ab7d5caaaf2f95e61f9dd65441801c2ddee38b
Patch
Third Party Advisory
https://huntr.dev/bounties/dafb2e4f-c6b6-4768-8ef5-b396cd6a801f
Exploit
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:httpie:httpie:*:*:*:*:*:*:*:*

Версия до 3.1.0 (исключая)

EPSS

Процентиль: 58%

0.00371

Низкий

2.4 Low

CVSS3

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

NVD-CWE-noinfo

Связанные уязвимости

CVE-2022-0430

CVSS3: 5.3

ubuntu

почти 4 года назад

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository httpie/httpie prior to 3.1.0.

CVE-2022-0430

CVSS3: 5.3

debian

почти 4 года назад

Exposure of Sensitive Information to an Unauthorized Actor in GitHub r ...

GHSA-6pc9-xqrg-wfqw

CVSS3: 2.4

github

почти 4 года назад

Exposure of Sensitive information in httpie

EPSS

Процентиль: 58%

0.00371

Низкий

2.4 Low

CVSS3

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

NVD-CWE-noinfo