Описание
Obsidian GitHub Copilot Plugin versions prior to 1.1.7 store Github API token in cleartext form. As a result, an attacker may perform unauthorized operations on the linked Github account.
EPSS
Процентиль: 0%
0.00007
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-312
Связанные уязвимости
CVSS3: 6.8
github
5 месяцев назад
Obsidian GitHub Copilot Plugin versions prior to 1.1.7 store Github API token in cleartext form. As a result, an attacker may perform unauthorized operations on the linked Github account.
EPSS
Процентиль: 0%
0.00007
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-312