Nixpkgs security tracker

Login with GitHub

Suggestions search

All statuses
Filter by:
With package: python313Packages.aiontfy

Found 13 matching suggestions

View:
Compact
Detailed
Dismissed
Permalink CVE-2025-55250
1.8 LOW
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): HIGH
  • Privileges required (PR): HIGH
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): LOW
updated 2 months, 3 weeks ago by @mweinelt Activity log
  • Created automatic suggestion 2 months, 3 weeks ago
  • @mweinelt dismissed 2 months, 3 weeks ago
HCL AION is affected by a Technical Error Disclosure vulnerability

HCL AION version 2 is affected by a Technical Error Disclosure vulnerability. This can expose sensitive technical details, potentially resulting in information disclosure or aiding further attacks.

Affected products

AION
  • ==2

Matching in nixpkgs

Package maintainers

Not packaged
Dismissed
Permalink CVE-2025-52659
2.8 LOW
  • CVSS version: 3.1
  • Attack vector (AV): LOCAL
  • Attack complexity (AC): LOW
  • Privileges required (PR): LOW
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): LOW
updated 2 months, 3 weeks ago by @mweinelt Activity log
  • Created automatic suggestion 2 months, 3 weeks ago
  • @mweinelt dismissed 2 months, 3 weeks ago
HCL AION is affected by a Cacheable HTTP Response vulnerability

HCL AION version 2 is affected by a Cacheable HTTP Response vulnerability. This may lead to unintended storage of sensitive or dynamic content, potentially resulting in unauthorized access or information disclosure.

Affected products

AION
  • ==2

Matching in nixpkgs

Package maintainers

not packaged
Dismissed
Permalink CVE-2025-52661
2.4 LOW
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): HIGH
  • User interaction (UI): REQUIRED
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): LOW
  • Availability impact (A): NONE
updated 2 months, 3 weeks ago by @mweinelt Activity log
  • Created automatic suggestion 2 months, 3 weeks ago
  • @mweinelt dismissed 2 months, 3 weeks ago
HCL AION version 2 is affected by a JWT Token …

HCL AION version 2 is affected by a JWT Token Expiry Too Long vulnerability. This may increase the risk of token misuse, potentially resulting in unauthorized access if the token is compromised.

Affected products

AION
  • ==2

Matching in nixpkgs

Package maintainers

not packaged