@nil @thisismissem @pixelfed yeah, something is fishy......

All posts Emelia's posts Post Back to profile

@nil @thisismissem @pixelfed yeah, something is fishy... Critical is usually reserved for "oops all root access on the host" vulns...

Like 13 February at 7:48 | Wall-to-wall | Open on hachyderm.io

4 comments

Emelia 👸🏻

@matrix9180 @nil @pixelfed that's how it was scored by GitHub score calculator. https://github.com/pixelfed/pixelfed/security/advisories/GHSA-gccq-h3xj-jgvf

13 February at 8:09 | Open on hachyderm.io

Anil

@thisismissem @matrix9180 @pixelfed huh. TIL what's in the CVE score: https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator

At least the base score.

13 February at 8:20 | Open on fosstodon.org

Matrix9180 :ruby: :rust:

@nil @thisismissem @pixelfed yep, but I suppose it could be that high because it maybe exposes everyone's info. Going to get some rest but I'll probably see what they fixed and go from there lol

13 February at 8:21 | Open on hachyderm.io

Emelia 👸🏻

@nil @matrix9180 @pixelfed so yeah, base score is 9.9 — though nist's calculator is more explanatory than GitHubs, overall score ended up being 8.4 with all the other factors

13 February at 8:38 | Open on hachyderm.io

Go Up