CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Litestream: >> Litestream >> 0.3.2 Security Vulnerabilities

CVE-2024-41254

An issue was discovered in litestream v0.3.13. The usage of the ssh.InsecureIgnoreHostKey() disables host key verification, possibly allowing attackers to obtain sensitive information via a man-in-the-middle attack.

CVSS Score

5.3

EPSS Score

0.001

Published

2024-07-31

Page 1

Vulnerabilities

Vulnerable Software

Litestream: >> Litestream >> 0.3.2 Security Vulnerabilities

Products

Pricing

Contact Us