Количество 2
Количество 2
CVE-2024-29120
In Streampark (version < 2.1.4), when a user logged in successfully, the Backend service would return "Authorization" as the front-end authentication credential. User can use this credential to request other users' information, including the administrator's username, password, salt value, etc. Mitigation: all users should upgrade to 2.1.4
GHSA-hcf8-5j78-887v
Apache StreamPark: Information leakage vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-29120 In Streampark (version < 2.1.4), when a user logged in successfully, the Backend service would return "Authorization" as the front-end authentication credential. User can use this credential to request other users' information, including the administrator's username, password, salt value, etc. Mitigation: all users should upgrade to 2.1.4 | CVSS3: 5.9 | 0% Низкий | больше 1 года назад |
| GHSA-hcf8-5j78-887v Apache StreamPark: Information leakage vulnerability | CVSS3: 5.9 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу