An issue ingalxe.com Galxe platform 1.0 allows a remote attacker to obtain sensitive information via the Web3 authentication process of Galxe, the signed message lacks a nonce (random number)
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://galxe.com/ |
History
Mon, 04 Nov 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-338 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-04-30T00:00:00
Updated: 2024-11-04T19:34:16.385Z
Reserved: 2023-12-04T00:00:00
Link: CVE-2023-50059
Vulnrichment
Updated: 2024-08-02T22:09:49.698Z
NVD
Status : Awaiting Analysis
Published: 2024-04-30T19:15:23.097
Modified: 2024-11-21T08:36:29.803
Link: CVE-2023-50059
Redhat
No data.