CVE Vulnerabilities

CVE-2024-20050

Insecure Storage of Sensitive Information

Published: Apr 01, 2024 | Modified: Oct 30, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541757; Issue ID: ALPS08541757.

Weakness

The product stores sensitive information without properly limiting read or write access by unauthorized actors.

References