Lucene search
GoogleOSV:GO-2022-0519HistoryJul 30, 2022 - 3:51 a.m.
Improper validation of access tokens in github.com/flyteorg/flyteadmin
2022-07-3003:51:07
Google
osv.dev
14
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
32.5%
Improper validation of access tokens can permit use of expired tokens.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/flyteorg/flyteadmin | lt | 1.1.31 |
Related
veracode
veracode
Insecure Session
2022-07-14 05:23:03
osv
osv
FlyteAdmin Insufficient AccessToken Expiration Check
2022-07-15 18:10:48
CVE-2022-31145
2022-07-13 21:15:08
nvd
nvd
CVE-2022-31145
2022-07-13 21:15:08
github
github
FlyteAdmin Insufficient AccessToken Expiration Check
2022-07-15 18:10:48
cvelist
cvelist
CVE-2022-31145 Insufficient AccessToken Expiration Check in FlyteAdmin
2022-07-13 20:30:12
prion
prion
Authorization
2022-07-13 21:15:00
cve
cve
CVE-2022-31145
2022-07-13 21:15:08
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
32.5%
Related for OSV:GO-2022-0519