354 matches found
@steipete/summarize allows local attackers to read bearer tokens and API credentials stored in ~/.summarize/daemon.json
Summarize versions through 0.14.1, fixed in commit 0cfb0fb, creates the daemon configuration directory and file with default filesystem permissions that may be world-readable on Unix-like systems, allowing local attackers to read bearer tokens and API credentials stored in /.summarize/daemon.json...
EUVD-2013-4344
Malware in sbrugna...
EUVD-2003-0408
Malware in sbrugna...
EUVD-2000-0183
Malware in sbrugna...
EUVD-2013-0349
Malware in sbrugna...
EUVD-2014-5337
Malware in sbrugna...
EUVD-2010-4276
Malware in sbrugna...
EUVD-2005-2137
Malware in sbrugna...
EUVD-2002-0560
Malware in sbrugna...
EUVD-2006-2046
Malware in sbrugna...
EUVD-2013-1109
Malware in sbrugna...
EUVD-2010-2253
Malware in sbrugna...
EUVD-2004-1169
Malware in sbrugna...
EUVD-2016-10394
Malware in sbrugna...
EUVD-2004-2329
Malware in sbrugna...
EUVD-2013-4346
Malware in sbrugna...
EUVD-2013-2125
Malware in sbrugna...
EUVD-2017-9540
Malware in sbrugna...
EUVD-2011-0438
Malware in sbrugna...
EUVD-2005-2962
Malware in sbrugna...