CVE-2023-5590

Description

NULL Pointer Dereference in GitHub repository seleniumhq/selenium prior to 4.14.0.

How to fix CVE-2023-5590

To remediate CVE-2023-5590, upgrade the affected package to a fixed version below.

• PyPI/selenium—upgrade to 023a0d52f106321838ab1c0997e76693f4dcbdf6 or later

Is CVE-2023-5590 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 023a0d52f106321838ab1c0997e76693f4dcbdf6 | from 0, < 4.14.0

CVSS scores

References (2)

• PATCHgithub.com/seleniumhq/selenium/commit/023a0d52f106321838ab1c0997e76693f4dcbdf6
• WEBhuntr.dev/bounties/e268cd68-4f34-49bd-878b-82b96dcc0c99