Lucene search
K

4 matches found

vulnersOsv
vulnersOsv
added 2019/02/18 11:34 p.m.5 views

selenium-web-checker (>=1.0.0 <=1.0.3), webdriver-sync (>=1.0.0 <=1.0.1) potentially affected by CVE-2016-10589 via selenium-binaries (>=0.11.0 <=0.13.11)

selenium-binaries NPM version =0.11.0, =1.0.0, =1.0.0, =1.0.1 Source cves: CVE-2016-10589 Source advisory: OSV:GHSA-H4MC-R4F4-HCF4...

9.3CVSS7.2AI score0.01752EPSS
Exploits0
NVD
NVD
added 2018/05/29 8:29 p.m.15 views

CVE-2016-10589

selenium-binaries downloads Selenium related binaries for your OS. selenium-binaries downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker controlled binary if t...

9.3CVSS8.4AI score0.01752EPSS
Exploits0References1
CVE
CVE
added 2018/05/29 8:0 p.m.64 views

CVE-2016-10589

Summary: The CVE-2016-10589 issue affects the npm package selenium-binaries, which downloads Selenium binaries over HTTP. The underlying vulnerability is a MITM risk that can lead to remote code execution if a malicious binary is swapped during transmission. The connected advisories consistently ...

9.3CVSS8.3AI score0.01752EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/05/29 8:0 p.m.18 views

CVE-2016-10589

selenium-binaries downloads Selenium related binaries for your OS. selenium-binaries downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker controlled binary if t...

8.4AI score0.01752EPSS
Exploits0References1
Rows per page
Query Builder