Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Erlang/OTP Rebar3 version 3.7.0 through 3.7.5 contains a Signing oracle vulnerability in Package registry verification that can result in Package modifications not detected, allowing code execution. This attack appears to be exploitable via Victim fetches packages from malicious/compromised mirror. This vulnerability appears to have been fixed in 3.8.0.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Erlang/OTP Rebar3 输入验证错误漏洞
Vulnerability Description
Erlang/OTP Rebar3是一款Erlang构建工具。该产品主要用于编译和测试Erlang应用程序。 Erlang/OTP Rebar3 3.7.0版本至3.7.5版本中存在输入验证漏洞。攻击者可借助特制的包利用该漏洞执行代码。
CVSS Information
N/A
Vulnerability Type
N/A