Products
Pheonix App
- 0.2.4
Source
security-advisories@github.com
Tags
CVE-2024-41951 details
Published : July 31, 2024, 8:15 p.m.
Last Modified : July 31, 2024, 8:15 p.m.
Last Modified : July 31, 2024, 8:15 p.m.
Description
Pheonix App is a Python application designed to streamline various tasks, from managing files to playing mini-games. The issue is that the map of encoding/decoding languages are visible in code. The Problem was patched in 0.2.4.
CVSS Score
| 1 | 2 | 3 | 4.4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|---|---|
| CWE-323 | Reusing a Nonce, Key Pair in Encryption | Nonces should be used for the present occasion and only once. |
CVSS Data
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
Base Score
4.4
Exploitability Score
1.8
Impact Score
2.5
Base Severity
MEDIUM
Vector String : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
References
| URL | Source |
|---|---|
| https://github.com/AkshuDev/PheonixAppAPI/security/advisories/GHSA-258h-f687-4226 | security-advisories@github.com |
This website uses the NVD API, but is not approved or certified by it.