5.3 MEDIUM
- CVSS version: 3.1
- Attack vector (AV):
- Attack complexity (AC):
- Privileges required (PR):
- User interaction (UI):
- Scope (S):
- Confidentiality impact (C):
- Integrity impact (I):
- Availability impact (A):
by @mweinelt Activity log
- Created automatic suggestion
- @mweinelt dismissed
birkir prime GraphQL API graphql information disclosure
A vulnerability was detected in birkir prime up to 0.4.0.beta.0. This issue affects some unknown processing of the file /graphql of the component GraphQL API. Performing a manipulation results in information disclosure. The attack may be initiated remotely. The exploit is now public and may be used. The project was informed of the problem early through an issue report but has not responded yet.
References
- VDB-341764 | birkir prime GraphQL API graphql information disclosure vdb-entry
- VDB-341764 | CTI Indicators (IOB, IOC, TTP, IOA) signature permissions-required
- Submit #731100 | birkir prime <=0.4.0 Sensitive Information Disclosure third-party-advisory
- https://github.com/birkir/prime/issues/541 issue-tracking exploit
- VDB-341764 | CTI Indicators (IOB, IOC, TTP, IOA) signature permissions-required
- Submit #731100 | birkir prime <=0.4.0 Sensitive Information Disclosure third-party-advisory
- https://github.com/birkir/prime/issues/541 issue-tracking exploit
- VDB-341764 | birkir prime GraphQL API graphql information disclosure vdb-entry
Affected products
- ==0.4.0.beta
Matching in nixpkgs
pkgs.mprime
Mersenne prime search / System stability tester
pkgs.primecount
Fast prime counting function implementations
pkgs.primesieve
Fast C/C++ prime number generator
pkgs.prime-server
Non-blocking (web)server API for distributed computing and SOA based on zeromq
pkgs.courier-prime
Monospaced font designed specifically for screenplays
-
nixos-unstable 2019-12-05
- nixpkgs-unstable 2019-12-05
- nixos-unstable-small 2019-12-05
pkgs.CuboCore.libcprime
Library for bookmarking, saving recent activites, managing settings of C-Suite
pkgs.quartus-prime-lite
FPGA design and simulation software
-
nixos-unstable 24.1std.0.1077
- nixpkgs-unstable 24.1std.0.1077
- nixos-unstable-small 24.1std.0.1077
pkgs.rubyPackages.prime
None
pkgs.dolphin-emu-primehack
Gamecube/Wii/Triforce emulator for x86_64 and ARMv8
pkgs.haskellPackages.primes
Efficient, purely functional generation of prime numbers
pkgs.rubyPackages_3_1.prime
None
pkgs.rubyPackages_3_2.prime
None
pkgs.rubyPackages_3_3.prime
None
pkgs.rubyPackages_3_4.prime
None
pkgs.rubyPackages_3_5.prime
None
pkgs.haskellPackages.nth-prime
Computing the nth prime
pkgs.python312Packages.msprime
Simulate genealogical trees and genomic sequence data using population genetic models
pkgs.python312Packages.primepy
This module contains several useful functions to work with prime numbers. from primePy import primes
pkgs.python312Packages.primer3
Oligo analysis and primer design
-
nixos-unstable primer3-2.2.0
- nixpkgs-unstable primer3-2.2.0
- nixos-unstable-small primer3-2.2.0
pkgs.python313Packages.msprime
Simulate genealogical trees and genomic sequence data using population genetic models
pkgs.python313Packages.primepy
This module contains several useful functions to work with prime numbers. from primePy import primes
pkgs.python313Packages.primer3
Oligo analysis and primer design
-
nixos-unstable primer3-2.2.0
- nixpkgs-unstable primer3-2.2.0
- nixos-unstable-small primer3-2.2.0
pkgs.haskellPackages.antiprimes
Initial project template from stack
pkgs.haskellPackages.primecount
Bindings to the primecount library
pkgs.haskellPackages.primesieve
FFI bindings for the primesieve library
pkgs.perlPackages.MathPrimeUtil
Utilities related to prime numbers, including fast sieves and factoring
pkgs.akkuPackages.chibi-math-prime
Prime and number theoretic utilities
pkgs.haskellPackages.prelude-prime
A slightly better (but conservative) Prelude
pkgs.perl538Packages.MathPrimeUtil
Utilities related to prime numbers, including fast sieves and factoring
pkgs.perl540Packages.MathPrimeUtil
Utilities related to prime numbers, including fast sieves and factoring
pkgs.perlPackages.MathPrimeUtilGMP
Utilities related to prime numbers, using GMP
pkgs.perlPackages.MathProvablePrime
Generate a provable prime number, in pure Perl
pkgs.python312Packages.primecountpy
Cython interface for C++ primecount library
pkgs.python313Packages.primecountpy
Cython interface for C++ primecount library
pkgs.haskellPackages.opentheory-prime
Prime natural numbers
pkgs.perl538Packages.MathPrimeUtilGMP
Utilities related to prime numbers, using GMP
pkgs.perl540Packages.MathPrimeUtilGMP
Utilities related to prime numbers, using GMP
pkgs.rubyPackages.jekyll-theme-primer
None
pkgs.perl538Packages.MathProvablePrime
Generate a provable prime number, in pure Perl
pkgs.perl540Packages.MathProvablePrime
Generate a provable prime number, in pure Perl
pkgs.rubyPackages_3_1.jekyll-theme-primer
None
pkgs.rubyPackages_3_2.jekyll-theme-primer
None
pkgs.rubyPackages_3_3.jekyll-theme-primer
None
pkgs.rubyPackages_3_4.jekyll-theme-primer
None
pkgs.rubyPackages_3_5.jekyll-theme-primer
None
Package maintainers
-
@dan4ik605743 Danil Danevich <6057430gu@gmail.com>
-
@austinbutler Austin Butler <austinabutler@gmail.com>
-
@Madouura Madoura <madouura@gmail.com>
-
@stigtsp Stig Palmquist <stig@stig.io>
-
@Thra11 Tom Hall <tahall256@protonmail.ch>
-
@omasanori Masanori Ogino
-
@7c6f434c Michael Raskin <7c6f434c@mail.ru>
-
@timokau Timo Kaufmann <timokau@zoho.com>
-
@collares Mauricio Collares <mauricio@collares.org>
-
@alxsimon Alexis Simon <alexis.simon@normalesup.org>
-
@MatthewCroughan Matthew Croughan <matt@croughan.sh>
-
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
-
@bjornfor Bjørn Forsman <bjorn.forsman@gmail.com>
-
@kwohlfahrt Kai Wohlfahrt <kai.wohlfahrt@gmail.com>