Skip to main content

Sorcery

1 CVEs product

Monthly

CVE-2020-11052 Ruby CRITICAL PATCH Act Now

In Sorcery before 0.15.0, there is a brute force vulnerability when using password authentication via Sorcery. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Sorcery
NVD GitHub
CVSS 3.1
9.8
EPSS
1.6%
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

In Sorcery before 0.15.0, there is a brute force vulnerability when using password authentication via Sorcery. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Sorcery
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy