Количество 2
Количество 2
CVE-2020-7696
This affects all versions of package react-native-fast-image. When an image with source={{uri: "...", headers: { host: "somehost.com", authorization: "..." }} is loaded, all other subsequent images will use the same headers, this can lead to signing credentials or other session tokens being leaked to other servers.
GHSA-6xhg-q9c8-rj32
Credential leak in react-native-fast-image
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-7696 This affects all versions of package react-native-fast-image. When an image with source={{uri: "...", headers: { host: "somehost.com", authorization: "..." }} is loaded, all other subsequent images will use the same headers, this can lead to signing credentials or other session tokens being leaked to other servers. | CVSS3: 5.3 | 0% Низкий | больше 5 лет назад |
| GHSA-6xhg-q9c8-rj32 Credential leak in react-native-fast-image | CVSS3: 5.3 | 0% Низкий | больше 4 лет назад |
Уязвимостей на страницу