6 matches found
CVE-2023-50974
creationtimestamp| type| source ---|---|--- 2024-01-09 10:26:22+00:00| seen| https://t.me/ctinow/164912 2024-01-12 23:16:31+00:00| seen| https://t.me/ctinow/167589 2024-01-26 09:06:16+00:00| seen| https://t.me/ctinow/174057 2025-06-17 16:41:26+00:00| published-proof-of-concept|...
appw (>=0.0.1 <=0.0.2), appwrite-sync (=0.4.5) +8 more potentially affected by CVE-2023-50974 via appwrite (>=0.10.0 <=2.0.2)
appwrite PYPI version =0.10.0, =0.0.1, =0.1.0, =1.1.5, =0.0.36, =0.1.0, =0.1.4, =1.0.0, =1.1.0, =1.3.0 Source cves: CVE-2023-50974 Source advisory: OSV:GHSA-G777-CRP9-M27G...
CVE-2023-50974
In Appwrite CLI before 3.0.0, when using the login command, the credentials of the Appwrite user are stored in a /.appwrite/prefs.json file with 0644 as UNIX permissions. Any user of the local system can access those credentials...
appw (>=0.0.1 <=0.0.2), appwrite-sync (=0.4.5) +8 more potentially affected by CVE-2023-50974 via appwrite (>=0.10.0 <=2.0.2)
appwrite PYPI version =0.10.0, =0.0.1, =0.1.0, =1.1.5, =0.0.36, =0.1.0, =0.1.4, =1.0.0, =1.1.0, =1.3.0 Source cves: CVE-2023-50974 Source advisory: OSV:PYSEC-2024-2...
CVE-2023-50974
In Appwrite CLI before 3.0.0, when using the login command, the credentials of the Appwrite user are stored in a /.appwrite/prefs.json file with 0644 as UNIX permissions. Any user of the local system can access those credentials...
CVE-2023-50974
CVE-2023-50974 affects Appwrite CLI prior to 3.0.0. The login command stores the Appwrite user’s credentials in ~/.appwrite/prefs.json with 0644 permissions, allowing any local system user to read them. Red Hat and OSV references corroborate the same description. Remediation: upgrade Appwrite CLI...