exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2023-38201

около 2 лет назад

A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the true status of a monitored machine if the fake agent is added to the verifier list by a legitimate user, resulting in a breach of the integrity of the registrar database.

CVSS3: 6.5

EPSS: Низкий

CVE-2023-38201

около 2 лет назад

A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the true status of a monitored machine if the fake agent is added to the verifier list by a legitimate user, resulting in a breach of the integrity of the registrar database.

CVSS3: 6.5

EPSS: Низкий

CVE-2023-38201

около 2 лет назад

A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the true status of a monitored machine if the fake agent is added to the verifier list by a legitimate user, resulting in a breach of the integrity of the registrar database.

CVSS3: 6.5

EPSS: Низкий

SUSE-SU-2023:3525-1

около 2 лет назад

Security update for keylime

EPSS: Низкий

GHSA-f4r5-q63f-gcww

около 2 лет назад

Keylime registrar and (untrusted) Agent can be bypassed by an attacker

CVSS3: 6.5

EPSS: Низкий

ELSA-2023-5080

почти 2 года назад

ELSA-2023-5080: keylime security update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2023-38201 A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the true status of a monitored machine if the fake agent is added to the verifier list by a legitimate user, resulting in a breach of the integrity of the registrar database.	CVSS3: 6.5	0% Низкий	около 2 лет назад
CVE-2023-38201 A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the true status of a monitored machine if the fake agent is added to the verifier list by a legitimate user, resulting in a breach of the integrity of the registrar database.	CVSS3: 6.5	0% Низкий	около 2 лет назад
CVE-2023-38201 A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the true status of a monitored machine if the fake agent is added to the verifier list by a legitimate user, resulting in a breach of the integrity of the registrar database.	CVSS3: 6.5	0% Низкий	около 2 лет назад
SUSE-SU-2023:3525-1 Security update for keylime		0% Низкий	около 2 лет назад
GHSA-f4r5-q63f-gcww Keylime registrar and (untrusted) Agent can be bypassed by an attacker	CVSS3: 6.5	0% Низкий	около 2 лет назад
ELSA-2023-5080 ELSA-2023-5080: keylime security update (MODERATE)			почти 2 года назад

Уязвимостей на страницу