Unrated severityNVD Advisory· Published Jul 31, 2024· Updated Oct 29, 2024
CVE-2024-41254
CVE-2024-41254
Description
An issue was discovered in litestream v0.3.13. The usage of the ssh.InsecureIgnoreHostKey() disables host key verification, possibly allowing attackers to obtain sensitive information via a man-in-the-middle attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- litestream/litestreamdescription
- osv-coords2 versions
< 0.5.2-r0+ 1 more
- (no CPE)range: < 0.5.2-r0
- (no CPE)range: < 0.5.2-r0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.