Lucene search

MitreVULNRICHMENT:CVE-2023-50053

HistoryApr 30, 2024 - 12:00 a.m.

CVE-2023-50053

2024-04-3000:00:00

mitre

github.com

foundation platform

remote attacker

sensitive information

web3 authentication

signed message

nonce

AI Score

6.7

Confidence

Low

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

An issue in Foundation.app Foundation platform 1.0 allows a remote attacker to obtain sensitive information via the Web3 authentication process of Foundation, the signed message lacks a nonce (random number)

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:foundation_platform:foundation_app:*:*:*:*:*:*:*:*"
    ],
    "vendor": "foundation_platform",
    "product": "foundation_app",
    "versions": [
      {
        "status": "affected",
        "version": "1.0"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

github.com/d0scoo1/Web3AuthRA