CVE-2017-1000001

FedMsg 0.18.1 and older is vulnerable to a message validation flaw resulting in message validation not being enabled if configured to be on.
Configurations

Configuration 1 (hide)

cpe:2.3:a:fedoraproject:fedmsg:*:*:*:*:*:*:*:*

History

21 Nov 2024, 03:03

Type Values Removed Values Added
References () https://github.com/fedora-infra/fedmsg/blob/0.18.2/CHANGELOG.rst - Third Party Advisory () https://github.com/fedora-infra/fedmsg/blob/0.18.2/CHANGELOG.rst - Third Party Advisory

Information

Published : 2017-07-17 13:18

Updated : 2024-11-21 03:03


NVD link : CVE-2017-1000001

Mitre link : CVE-2017-1000001

CVE.ORG link : CVE-2017-1000001


JSON object : View

Products Affected

fedoraproject

  • fedmsg
CWE
CWE-20

Improper Input Validation