Описание
Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions.
Дополнительная информация
Статус:
Important
Дефект:
CWE-1391
https://bugzilla.redhat.com/show_bug.cgi?id=2390821Securden-Unified-PAM: Securden Unified PAM Shared SSH Key and Cloud Infrastructure
Связанные уязвимости
CVSS3: 7.2
nvd
4 месяца назад
Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions.
CVSS3: 7.2
github
4 месяца назад
Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions.