Lucene search

CVE-2016-10589

🗓️ 29 May 2018 20:01:29Reported by hackeroneType

selenium-binaries downloads Selenium related binaries for your OS, leaving it vulnerable to MITM attacks. Possible RCE by swapping out binaries

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
NVD	CVE-2016-10589	29 May 201820:29	–	nvd
Veracode	Man In The Middle (MitM)	20 Dec 201606:19	–	veracode
Prion	Remote code execution	29 May 201820:29	–	prion
Huntr	in spunjs/selenium-binaries	17 Aug 202000:00	–	huntr
Node.js	Downloads Resources over HTTP	30 Nov 201622:19	–	nodejs
Cvelist	CVE-2016-10589	29 May 201820:00	–	cvelist
OSV	selenium-binaries downloads resources over HTTP	18 Feb 201923:34	–	osv
Github Security Blog	selenium-binaries downloads resources over HTTP	18 Feb 201923:34	–	github

Nvd

Node

spunjs selenium-binariesRange≤0.10.0node.js

[
  {
    "product": "selenium-binaries node module",
    "vendor": "HackerOne",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ]
  }
]

Source	Link
nodesecurity	www.nodesecurity.io/advisories/175

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

29 May 2018 20:29Current

8.3High risk

Vulners AI Score8.3

CVSS29.3

CVSS38.1

EPSS0.00774