Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2024-6535

🗓️ 17 Jul 2024 03:01:15Reported by redhatType 
cve
 cve🔗 web.nvd.nist.gov👁 91 Views

Skupper flaw allows authentication bypass via crafted cooki

Show more

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Veracode		Authentication Bypass
19 Jul 202408:48
veracode
Cvelist		CVE-2024-6535 Skupper: potential authentication bypass to skupper console via forged cookies
17 Jul 202402:25
cvelist
OSV		GO-2024-2987 Skupper uses a static cookie secret for the openshift oauth-proxy in github.com/skupperproject/skupper
22 Jul 202418:24
osv
OSV		GHSA-W799-V85J-88PG Skupper uses a static cookie secret for the openshift oauth-proxy
17 Jul 202403:31
osv
Github Security Blog		Skupper uses a static cookie secret for the openshift oauth-proxy
17 Jul 202403:31
github
RedhatCVE		CVE-2024-6535
17 Jul 202402:24
redhatcve
NVD		CVE-2024-6535
17 Jul 202403:15
nvd
Prion		CVE-2024-6535
17 Jul 202403:15
prion
Vulnrichment		CVE-2024-6535 Skupper: potential authentication bypass to skupper console via forged cookies
17 Jul 202402:25
vulnrichment
RedHat Linux		(RHSA-2024:4865) Moderate: Red Hat Service Interconnect security update
25 Jul 202410:12
redhat
Rows per page
Nvd
Node
redhatservice_interconnectMatch1.0
[
  {
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "0.0.0-20240703184342-c26bce4079ff",
        "versionType": "custom"
      }
    ],
    "packageName": "skupper",
    "collectionURL": "https://github.com/skupperproject/skupper",
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Red Hat",
    "product": "Service Interconnect 1.4 for RHEL 9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "service-interconnect/skupper-flow-collector-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "1.4.7-1",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:service_interconnect:1.4::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Service Interconnect 1.4 for RHEL 9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "service-interconnect/skupper-service-controller-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "1.4.7-1",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:service_interconnect:1.4::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Service Interconnect 1 for RHEL 9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "service-interconnect/skupper-flow-collector-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "1.5.5-1",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:service_interconnect:1::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Service Interconnect 1 for RHEL 9",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "service-interconnect/skupper-service-controller-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "1.5.5-1",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:service_interconnect:1::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Service Interconnect 1",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "skupper",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:service_interconnect:1"
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
17 Jul 2024 03:15Current
5.5Medium risk
Vulners AI Score5.5
CVSS35.3
EPSS0.00051
SSVC
CWE-1392CWE-287
skupperauthentication bypasscrafted cookiecve-2024-6535
91
.json
Report