opencanary@0.5.1 vulnerabilities

OpenCanary daemon

Direct Vulnerabilities

Known vulnerabilities in the opencanary package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Incorrect Authorization

opencanary is an OpenCanary daemon

Affected versions of this package are vulnerable to Incorrect Authorization through the configuration file. An attacker can escalate privileges by modifying the configuration file, which is executed by the daemon running as root.

How to fix Incorrect Authorization?

Upgrade opencanary to version 0.9.4 or higher.

[,0.9.4)