EPSS
Percentile
51.3%
ssb-db and ssb-server are vulnerable to information disclosure. A flaw in the get method leads to a decryption of any messages it can decrypt and returning of decrypted sensitive data by default instead of only decrypting when asked.
get
github.com/advisories/GHSA-mpgr-2cx9-327h
github.com/ssbc/ssb-db/commit/43334d0871c9cc6220e0f6d6338499060f7761d4
github.com/ssbc/ssb-db/security/advisories/GHSA-mpgr-2cx9-327h