Vulnerabilities > CVE-2019-5479 - Inclusion of Functionality from Untrusted Control Sphere vulnerability in Larvit Larvitbase

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
larvit
CWE-829

Summary

An unintended require vulnerability in <v0.5.5 larvitbase-api may allow an attacker to load arbitrary non-production code (JavaScript file).