Nixpkgs security tracker

Login with GitHub

Suggestion detail

Untriaged
Permalink CVE-2018-25155
5.3 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): Low (L)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): Low (L)
  • Modified Availability (MA): None (N)
updated 1 month, 3 weeks ago by @jopejoe1 Activity log
  • Created suggestion 3 months, 4 weeks ago
  • @jopejoe1 ignored
    28 packages
    • mslicer
    • kisslicer
    • pdfslicer
    • vpn-slice
    • icon-slicer
    • orca-slicer
    • LycheeSlicer
    • prusa-slicer
    • super-slicer
    • qidi-slicer-bin
    • super-slicer-beta
    • super-slicer-latest
    • sbclPackages.cl-slice
    • akkuPackages.r6rs-slice
    • python312Packages.slicer
    • python313Packages.slicer
    • haskellPackages.byteslice
    • haskellPackages.speedy-slice
    • python312Packages.jsonslicer
    • python312Packages.slicerator
    • python313Packages.jsonslicer
    • python313Packages.slicerator
    • haskellPackages.slice-cpp-gen
    • python312Packages.slicedimage
    • python313Packages.slicedimage
    • haskellPackages.language-slice
    • pkgsRocm.python3Packages.slicer
    • chickenPackages_5.chickenEggs.slice
    1 month, 3 weeks ago
Teradek Slice 7.3.15 Cross-Site Request Forgery via Password Change

Teradek Slice 7.3.15 contains a cross-site request forgery vulnerability that allows attackers to change administrative passwords without proper request validation. Attackers can craft a malicious web page that automatically submits password change requests to the device when a logged-in user visits the page.

Affected products

Slice
  • ==7.3.15
Ignored packages (28)

pkgs.mslicer

Experimental open source slicer for masked stereolithography (resin) printers

pkgs.pdfslicer

Simple application to extract, merge, rotate and reorder pages of PDF documents

pkgs.vpn-slice

vpnc-script replacement for easy and secure split-tunnel VPN setup

pkgs.icon-slicer

Utility for generating icon themes and libXcursor cursor themes

  • nixos-unstable 0.3
    • nixpkgs-unstable 0.3
    • nixos-unstable-small 0.3

pkgs.orca-slicer

G-code generator for 3D printers (Bambu, Prusa, Voron, VzBot, RatRig, Creality, etc.)

pkgs.LycheeSlicer

All-in-one 3D slicer for resin and FDM printers