exploitDog

GHSA-3m3v-xv6x-mhqh

Опубликовано: 25 дек. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

In Pexip VMR self-service portal before 3, the same SSH host key is used across different customers' installations, which allows authentication bypass.

In Pexip VMR self-service portal before 3, the same SSH host key is used across different customers' installations, which allows authentication bypass.

Ссылки

EPSS

Процентиль: 11%

0.00037

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-798

Связанные уязвимости

CVE-2023-40236

CVSS3: 5.3

nvd

около 2 лет назад

In Pexip VMR self-service portal before 3, the same SSH host key is used across different customers' installations, which allows authentication bypass.

EPSS

Процентиль: 11%

0.00037

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-798