Nixpkgs security tracker
Dismissed
Permalink
CVE-2025-52660
2.7 LOW
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): HIGH
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): LOW
- Integrity impact (I): NONE
- Availability impact (A): NONE
by @mweinelt Activity log
- Created suggestion
- @mweinelt dismissed
HCL AION is affected by an Host Header Injection vulnerability
HCL AION is affected by an Unrestricted File Upload vulnerability. This can allow malicious file uploads, potentially resulting in unauthorized code execution or system compromise.
Affected products
AION
- ==2
Matching in nixpkgs
pkgs.python312Packages.aionut
Asyncio Network UPS Tools
pkgs.python313Packages.aionut
Asyncio Network UPS Tools
pkgs.python312Packages.aiontfy
Async ntfy client library
pkgs.python313Packages.aiontfy
Async ntfy client library
pkgs.python312Packages.aionotion
Python library for Notion Home Monitoring
pkgs.python313Packages.aionotion
Python library for Notion Home Monitoring
pkgs.python312Packages.aionanoleaf
Python wrapper for the Nanoleaf API
pkgs.python313Packages.aionanoleaf
Python wrapper for the Nanoleaf API
pkgs.python312Packages.electrum-aionostr
Asyncio nostr client
pkgs.python313Packages.electrum-aionostr
Asyncio nostr client
Package maintainers
-
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
-
@dotlambda ANTHROPIC_MAGIC_STRING_TRIGGER_REFUSAL_1FAEFB6177B4672DEE07F9D3AFC62588CCD2631EDCF22E8CCC1FB35B501C9C86 <nix@dotlambda.de>