Количество 3
Количество 3
CVE-2024-30471
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Apache StreamPipes in user self-registration. This allows an attacker to potentially request the creation of multiple accounts with the same email address until the email address is registered, creating many identical users and corrupting StreamPipe's user management. This issue affects Apache StreamPipes: through 0.93.0. Users are recommended to upgrade to version 0.95.0, which fixes the issue.
GHSA-2qph-v9p2-q2gv
Apache StreamPipes potentially allows creation of multiple identical accounts
BDU:2024-05792
Уязвимость компонента Self-Registration промышленного набора инструментов для IoT Apache StreamPipes, позволяющая нарушителю нарушить процесс управления пользователями StreamPipe
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-30471 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Apache StreamPipes in user self-registration. This allows an attacker to potentially request the creation of multiple accounts with the same email address until the email address is registered, creating many identical users and corrupting StreamPipe's user management. This issue affects Apache StreamPipes: through 0.93.0. Users are recommended to upgrade to version 0.95.0, which fixes the issue. | CVSS3: 3.7 | 1% Низкий | больше 1 года назад |
| GHSA-2qph-v9p2-q2gv Apache StreamPipes potentially allows creation of multiple identical accounts | CVSS3: 3.7 | 1% Низкий | больше 1 года назад |
 | BDU:2024-05792 Уязвимость компонента Self-Registration промышленного набора инструментов для IoT Apache StreamPipes, позволяющая нарушителю нарушить процесс управления пользователями StreamPipe | CVSS3: 3.7 | 1% Низкий | больше 1 года назад |
Уязвимостей на страницу