Lucene search
GoogleOSV:CVE-2020-24928HistoryAug 29, 2020 - 8:15 p.m.
CVE-2020-24928
2020-08-2920:15:16
Google
osv.dev
4
managers/socketManager.ts in PreMiD through 2.1.3 has a locally hosted socketio web server (port 3020) open to all origins, which allows attackers to obtain sensitive Discord user information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| premid | eq | 2.0 | |
| premid | eq | 2.0.1.4 | |
| premid | eq | 1.3.1.8 | |
| premid | eq | 2.0-beta3-RC | |
| premid | eq | 1.3.2.4 | |
| premid | eq | 0.2 | |
| premid | eq | app-v2.1.1 | |
| premid | eq | app-v2.1.3 | |
| premid | eq | app-v2.0.7 | |
| premid | eq | 1.2.0.1 |
References
Related
cve
cve
CVE-2020-24928
2020-08-29 20:15:16
cvelist
cvelist
CVE-2020-24928
2020-08-29 19:35:40
nvd
nvd
CVE-2020-24928
2020-08-29 20:15:16
prion
prion
Design/Logic Flaw
2020-08-29 20:15:00