CVE-2026-45222
MEDIUM6.1EPSS 0.01%@steipete/summarize allows local attackers to read bearer tokens and API credentials stored in ~/.summarize/daemon.json
發布日:2026/5/11修改日:2026/5/18
描述
Summarize versions through 0.14.1, fixed in commit 0cfb0fb, creates the daemon configuration directory and file with default filesystem permissions that may be world-readable on Unix-like systems, allowing local attackers to read bearer tokens and API credentials stored in ~/.summarize/daemon.json. A local attacker can exploit these permissive permissions to read the daemon bearer token and persisted provider credentials, enabling unauthorized access to the daemon or recovery of sensitive API keys.
受影響套件(1)
- npm/@steipete/summarizefrom 0, < 0.15.0
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 4.0 | — | CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N |
| osv | CVSS 3.1 | MEDIUM6.1 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N |
參考連結(6)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2026-45222
- PATCHhttps://github.com/steipete/summarize
- WEBhttps://github.com/steipete/summarize/commit/0cfb0fb99777a87a7b02082b5e4bd449f8dd6175
- WEBhttps://github.com/steipete/summarize/pull/214
- WEBhttps://github.com/steipete/summarize/releases/tag/v0.15.0
- WEBhttps://www.vulncheck.com/advisories/summarize-insecure-daemon-configuration-file-permissions