Lucene search
K

4 matches found

NVD
NVD
added 2022/11/29 11:15 p.m.13 views

CVE-2022-46155

Airtable.js is the JavaScript client for Airtable. Prior to version 0.11.6, Airtable.js had a misconfigured build script in its source package. When the build script is run, it would bundle environment variables into the build target of a transpiled bundle. Specifically, the AIRTABLEAPIKEY and...

7.6CVSS0.00448EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/11/29 12:0 a.m.6 views

CVE-2022-46155 Airtable.js credentials exposed in browser builds

Airtable.js is the JavaScript client for Airtable. Prior to version 0.11.6, Airtable.js had a misconfigured build script in its source package. When the build script is run, it would bundle environment variables into the build target of a transpiled bundle. Specifically, the AIRTABLEAPIKEY and...

7.6CVSS7.5AI score0.00448EPSS
Exploits0References3
CVE
CVE
added 2022/11/29 12:0 a.m.70 views

CVE-2022-46155

Summary: CVE-2022-46155 describes a misconfiguration in Airtable.js prior to 0.11.6 where the build script would bundle AIRTABLE_API_KEY and AIRTABLE_ENDPOINT_URL into the transpiled bundle when building from source. This affects copies built from source (not npm/yarn-installed packages) if the u...

7.6CVSS6.5AI score0.00448EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/11/29 12:0 a.m.45 views

CVE-2022-46155 Airtable.js credentials exposed in browser builds

Airtable.js is the JavaScript client for Airtable. Prior to version 0.11.6, Airtable.js had a misconfigured build script in its source package. When the build script is run, it would bundle environment variables into the build target of a transpiled bundle. Specifically, the AIRTABLEAPIKEY and...

7.6CVSS7.7AI score0.00448EPSS
Exploits0References3
Rows per page
Query Builder