exploitDog

GHSA-8p4h-69c2-3352

Опубликовано: 12 янв. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The authentication mechanism can be bypassed by overflowing the value of the Cookie "authentication" field, provided there is an active user session.

The authentication mechanism can be bypassed by overflowing the value of the Cookie "authentication" field, provided there is an active user session.

Ссылки

EPSS

Процентиль: 5%

0.00021

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-190

CWE-287

Связанные уязвимости

CVE-2023-49262

CVSS3: 9.8

nvd

около 2 лет назад

The authentication mechanism can be bypassed by overflowing the value of the Cookie "authentication" field, provided there is an active user session.

EPSS

Процентиль: 5%

0.00021

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-190

CWE-287