Lucene search

CVE-2024-6895

🗓️ 19 Jul 2024 15:10:15Reported by YugabyteType

Insufficient authentication in user account managemen

Reporter	Title	Published	Views	Family All 4
Cvelist	CVE-2024-6895 Insecure Account Profile Management	19 Jul 202414:47	–	cvelist
OSV	CVE-2024-6895	19 Jul 202415:15	–	osv
NVD	CVE-2024-6895	19 Jul 202415:15	–	nvd
Vulnrichment	CVE-2024-6895 Insecure Account Profile Management	19 Jul 202414:47	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Linux",
      "Docker",
      "Kubernetes"
    ],
    "product": "YugabyteDB Anywhere",
    "vendor": "YugabyteDB",
    "versions": [
      {
        "lessThanOrEqual": "2.14.17.0",
        "status": "affected",
        "version": "2.14.0.0",
        "versionType": "git"
      },
      {
        "lessThanOrEqual": "2.16.9.0",
        "status": "affected",
        "version": "2.16.0.0",
        "versionType": "git"
      },
      {
        "lessThanOrEqual": "2.18.8.1",
        "status": "affected",
        "version": "2.18.0.0",
        "versionType": "git"
      },
      {
        "lessThan": "2.20.5.0",
        "status": "affected",
        "version": "2.20.0.0",
        "versionType": "git"
      }
    ]
  }
]

Source	Link
github	www.github.com/yugabyte/yugabyte-db/commit/9687371d8777f876285b737a9d01995bc46bafa5

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Jul 2024 15:15Current

6.9Medium risk

Vulners AI Score6.9

CVSS46.1

EPSS0.00061

SSVC

CWE-306