CVE-2024-43051 — Information disclosure while deriving keys for a session for any Widevine use ca... | CVE Daily

Medium CVSS 5.5

Overview

Information disclosure while deriving keys for a session for any Widevine use case.

CWE: CWE-285 Published: 2025-03-03T11:15:11.453

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 5.5 (MEDIUM)
Detected tags: info_leak (tag impact: LOW)

Recommended actions:

Reduce verbose errors, remove debug endpoints, minimize PII in logs.

Recommended tools

Tags

Information Disclosure