Homepage
About Snyk

aries-cloudagent@0.11.1 vulnerabilities

Hyperledger Aries Cloud Agent Python (ACA-Py) is a foundation for building decentralized identity applications and services running in non-mobile environments.

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the aries-cloudagent package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Missing Support for Integrity Check

aries-cloudagent is a Hyperledger Aries Cloud Agent Python (ACA-Py) is a foundation for building decentralized identity applications and services running in non-mobile environments.

Affected versions of this package are vulnerable to Missing Support for Integrity Check that allows unauthenticated DIDComm messages to be received from connections in the invitation state, over the basic_message or handshake_reuse protocols.

How to fix Missing Support for Integrity Check?

Upgrade aries-cloudagent to version 0.11.2 or higher.

[,0.11.2)
Go back to all versions of this package