CVE-2022-45956

Опубликовано: 12 дек. 2022

Источник: debian

EPSS Низкий

Описание

Boa Web Server versions 0.94.13 through 0.94.14 fail to validate the correct security constraint on the HEAD HTTP method allowing everyone to bypass the Basic Authorization mechanism.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
boa	removed			package

EPSS

Процентиль: 57%

0.00348

Низкий

Связанные уязвимости

CVE-2022-45956

CVSS3: 5.3

ubuntu

около 3 лет назад

Boa Web Server versions 0.94.13 through 0.94.14 fail to validate the correct security constraint on the HEAD HTTP method allowing everyone to bypass the Basic Authorization mechanism.

CVE-2022-45956

CVSS3: 5.3

nvd

около 3 лет назад

Boa Web Server versions 0.94.13 through 0.94.14 fail to validate the correct security constraint on the HEAD HTTP method allowing everyone to bypass the Basic Authorization mechanism.

GHSA-3g3q-575c-4343

CVSS3: 5.3

github

около 3 лет назад

Boa Web Server versions 0.94.13 through 0.94.14 fail to validate the correct security constraint on the HEAD HTTP method allowing everyone to bypass the Basic Authorization mechanism.

EPSS

Процентиль: 57%

0.00348

Низкий