Описание
An authentication bypass vulnerability was found in overt-engine. This flaw allows the creation of users in the system without authentication due to a flaw in the CreateUserSession command.
Дополнительная информация
Статус:
Important
Дефект:
CWE-1390
https://bugzilla.redhat.com/show_bug.cgi?id=2258509ovirt: authentication bypass
EPSS
Процентиль: 12%
0.00041
Низкий
7.5 High
CVSS3
Связанные уязвимости
CVSS3: 7.5
nvd
около 2 лет назад
An authentication bypass vulnerability was found in overt-engine. This flaw allows the creation of users in the system without authentication due to a flaw in the CreateUserSession command.
CVSS3: 9.1
github
около 2 лет назад
An authentication bypass vulnerability was found in overt-engine. This flaw allows the creation of users in the system without authentication due to a flaw in the CreateUserSession command.
EPSS
Процентиль: 12%
0.00041
Низкий
7.5 High
CVSS3