CVE-2023-42282 | NPM IP Package up to 1.1.8 isPublic information disclosure

Inserito da Angelo Barbosa | Feb 8, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in NPM IP Package up to 1.1.8. This issue affects the function isPublic. The manipulation leads to information disclosure.

The identification of this vulnerability is CVE-2023-42282. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2023-42282 | NPM IP Package up to 1.1.8 isPublic information disclosure

Post correlati

CVE-2024-25386 | laurelbridge DICOM Connectivity Framework up to 2.7.6a format_logfile.pl path traversal

CVE-2023-32886 | MediaTek MT8798 Modem IMS SMS UA denial of service (MOLY00730807)

CVE-2024-32711 | myCred Plugin up to 2.6.3 on WordPress cross site scripting

CVE-2024-30661 | ROS Melodic Morenia access control