Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-74430
HistorySep 09, 2022 - 12:00 a.m.

FlyteAdmin Information Disclosure Vulnerability

2022-09-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
flyteadmin
information disclosure
vulnerability
authorization server
sensitive information
public internet

EPSS

0.001

Percentile

36.8%

JSON

FlyteAdmin is a control plane for Flyte open source. Responsible for managing entities (tasks, workflows, startup plans) and managing workflow execution. An information disclosure vulnerability exists in Flyte FlyteAdmin versions prior to 1.1.44, which stems from the fact that users who enable the default Flyte authorization server without changing the default clientid hash will be exposed to the public Internet. An attacker can exploit the vulnerability to obtain sensitive information.

Related

nvd 1
patchstack 1
wpvulndb 1
prion 1
openvas 1
cve 1
cvelist 1
nvd
nvd
CVE-2022-2939
2022-09-06 18:15:15
patchstack
patchstack
WordPress WP Cerber Security plugin <= 9.0 - User Enumeration Bypass vulnerability
2022-09-02 00:00:00
wpvulndb
wpvulndb
WP Cerber Security < 9.1 - Username Enumeration Bypass
2022-09-02 00:00:00
prion
prion
Input validation
2022-09-06 18:15:00
openvas
openvas
WordPress WP Cerber Security, Anti-spam & Malware Scan Plugin < 9.1 Authorization Bypass Vulnerability
2023-10-30 00:00:00
cve
cve
CVE-2022-2939
2022-09-06 18:15:15
cvelist
cvelist
CVE-2022-2939 WP Cerber Security <= 9.0 - User Enumeration Bypass
2022-09-06 17:19:01

EPSS

0.001

Percentile

36.8%

JSON
Related for CNVD-2023-74430
nvd1patchstack1wpvulndb1prion1openvas1cve1cvelist1