exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2

CVE-2022-43690

около 3 лет назад

Concrete CMS (formerly concrete5) below 8.5.10 and between 9.0.0 and 9.1.2 did not use strict comparison for the legacy_salt so that limited authentication bypass could occur if using this functionality. Remediate by updating to Concrete CMS 9.1.3+ or 8.5.10+.

CVSS3: 6.3

EPSS: Низкий

GHSA-q56r-mw39-944g

около 3 лет назад

Concrete CMS vulnerable to Improper Authentication

CVSS3: 6.3

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2022-43690 Concrete CMS (formerly concrete5) below 8.5.10 and between 9.0.0 and 9.1.2 did not use strict comparison for the legacy_salt so that limited authentication bypass could occur if using this functionality. Remediate by updating to Concrete CMS 9.1.3+ or 8.5.10+.	CVSS3: 6.3	1% Низкий	около 3 лет назад
	GHSA-q56r-mw39-944g Concrete CMS vulnerable to Improper Authentication	CVSS3: 6.3	1% Низкий	около 3 лет назад

Уязвимостей на страницу