Lucene search

K
prionPRIOn knowledge basePRION:CVE-2019-20933
HistoryNov 19, 2020 - 2:15 a.m.

Authentication flaw

2020-11-1902:15:00
PRIOn knowledge base
www.prio-n.com
3

AI Score

9.4

Confidence

High

EPSS

0.042

Percentile

92.3%

InfluxDB before 1.7.6 has an authentication bypass vulnerability in the authenticate function in services/httpd/handler.go because a JWT token may have an empty SharedSecret (aka shared secret).