managers/socketManager.ts in PreMiD through 2.1.3 has a locally hosted socketio web server (port 3020) open to all origins, which allows attackers to obtain sensitive Discord user information.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/PreMiD/PreMiD/pull/501 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-08-29T19:35:40
Updated: 2024-08-04T15:26:08.636Z
Reserved: 2020-08-28T00:00:00
Link: CVE-2020-24928
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-08-29T20:15:16.493
Modified: 2024-11-21T05:16:13.473
Link: CVE-2020-24928
Redhat
No data.