7.5
CVE-2017-16046
- EPSS 0.27%
- Published 04.06.2018 19:29:02
- Last modified 21.11.2024 03:15:43
- Source support@hackerone.com
- Teams watchlist Login
- Open Login
`mariadb` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Data is provided by the National Vulnerability Database (NVD)
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.27% | 0.476 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
CWE-506 Embedded Malicious Code
The product contains code that appears to be malicious in nature.