Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2023/04/14 12:0 a.m.17 views

FreeBSD : py39-sentry-sdk -- sensitive cookies leak (15dae5cc-9ee6-4577-a93e-2ab57780e707)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 15dae5cc-9ee6-4577-a93e-2ab57780e707 advisory. - Sentry SDK is the official Python SDK for Sentry, real-time crash reporting software. When using the...

7.6CVSS6.9AI score0.00641EPSS
Exploits0References3
Circl
Circl
added 2023/03/22 11:36 p.m.7 views

CVE-2023-28117

creationtimestamp| type| source ---|---|--- 2023-03-22 23:36:00+00:00| seen| https://t.me/cibsecurity/60519...

7.6CVSS6.7AI score0.00641EPSS
Exploits0References1
CVE
CVE
added 2023/03/22 7:37 p.m.108 views

CVE-2023-28117

CVE-2023-28117 affects the Sentry SDK for Python (Django integration) prior to 1.14.0. When sendDefaultPII is True and a custom SESSION_COOKIE_NAME or CSRF_COOKIE_NAME is used, cookies (including session cookies) can be leaked to Sentry, potentially enabling impersonation or privilege escalation ...

7.6CVSS6.5AI score0.00641EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/03/22 7:37 p.m.57 views

CVE-2023-28117 Sentry SDK leaks sensitive session information when `sendDefaultPII` is set to `True`

Sentry SDK is the official Python SDK for Sentry, real-time crash reporting software. When using the Django integration of versions prior to 1.14.0 of the Sentry SDK in a specific configuration it is possible to leak sensitive cookies values, including the session cookie to Sentry. These sensitiv...

7.6CVSS7.7AI score0.00641EPSS
Exploits0References3
Rows per page
Query Builder