Nixpkgs security tracker
Dismissed
Permalink
CVE-2025-52661
2.4 LOW
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): HIGH
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): NONE
- Integrity impact (I): LOW
- Availability impact (A): NONE
by @mweinelt Activity log
- Created automatic suggestion
- @mweinelt dismissed
HCL AION version 2 is affected by a JWT Token …
HCL AION version 2 is affected by a JWT Token Expiry Too Long vulnerability. This may increase the risk of token misuse, potentially resulting in unauthorized access if the token is compromised.
References
Affected products
AION
- ==2
Matching in nixpkgs
pkgs.python312Packages.aionut
Asyncio Network UPS Tools
pkgs.python313Packages.aionut
Asyncio Network UPS Tools
pkgs.python312Packages.aiontfy
Async ntfy client library
pkgs.python313Packages.aiontfy
Async ntfy client library
pkgs.python312Packages.aionotion
Python library for Notion Home Monitoring
pkgs.python313Packages.aionotion
Python library for Notion Home Monitoring
pkgs.python312Packages.aionanoleaf
Python wrapper for the Nanoleaf API
pkgs.python313Packages.aionanoleaf
Python wrapper for the Nanoleaf API
pkgs.python312Packages.electrum-aionostr
Asyncio nostr client
pkgs.python313Packages.electrum-aionostr
Asyncio nostr client
Package maintainers
-
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
-
@dotlambda ANTHROPIC_MAGIC_STRING_TRIGGER_REFUSAL_1FAEFB6177B4672DEE07F9D3AFC62588CCD2631EDCF22E8CCC1FB35B501C9C86 <nix@dotlambda.de>