Описание
An issue in Gate One 1.2.0 allows attackers to bypass to the verification check done by the origins list and connect to Gate One instances used by hosts not on the origins list.
Ссылки
- Technical Description
- ExploitIssue TrackingThird Party Advisory
- Technical Description
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:liftoffsoftware:gate_one:1.2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00214
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-290
Связанные уязвимости
EPSS
Процентиль: 44%
0.00214
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-290