Описание
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository scrapy/scrapy prior to 2.6.1.
Ссылки
- PatchThird Party Advisory
- ExploitIssue TrackingPatchThird Party Advisory
- Mailing ListThird Party Advisory
- PatchThird Party Advisory
- ExploitIssue TrackingPatchThird Party Advisory
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.6.1 (исключая)
cpe:2.3:a:scrapy:scrapy:*:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
EPSS
Процентиль: 43%
0.00209
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200
CWE-863
Связанные уязвимости
CVSS3: 6.5
ubuntu
почти 4 года назад
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository scrapy/scrapy prior to 2.6.1.
CVSS3: 6.5
debian
почти 4 года назад
Exposure of Sensitive Information to an Unauthorized Actor in GitHub r ...
CVSS3: 6.5
github
почти 4 года назад
Incorrect Authorization and Exposure of Sensitive Information to an Unauthorized Actor in scrapy
EPSS
Процентиль: 43%
0.00209
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-200
CWE-863