Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added 2022/11/19 12:0 a.m.3 views

PT-2022-24956 · Alibaba · Aliyun-Oss-Client

Name of the Vulnerable Software and Affected Versions: aliyun-oss-client versions prior to 0.8.1 Description: The aliyun-oss-client unintentionally divulges the authentication secret. Users of this library will be affected, as the incoming secret will be disclosed unintentionally. Recommendations...

5.6CVSS4.3AI score0.00421EPSS
Exploits0References13
CNVD
CNVD
added 2017/08/30 12:0 a.m.1 views

Xinhua News Agency Ali Cloud OSS credentials have information leakage vulnerability

Xinhua News Agency Client is the mobile portal and new media flagship of the national news agency, the leader of China's new media national team, the unified entrance of China's party and government client clusters and the comprehensive information service platform. Aliyun Object Storage Service...

7AI score
Exploits0
CNVD
CNVD
added 2017/08/28 12:0 a.m.2 views

Cloud tip high school entrance examination Ali cloud OSS credentials have information leakage vulnerability

Cloudtip Higher Education App is a study software for high school students. There is an information leakage vulnerability in the Aliyun OSS credentials of CloudTip Higher Education. The vulnerability is caused by credential leakage due to the use of SDK with accessKeyId and accessKeySecret,...

6.8AI score
Exploits0
CNVD
CNVD
added 2017/07/20 12:0 a.m.3 views

Baby Grid AliCloud oss credentials have information leakage vulnerability

Baby Grid is a Chinese overseas direct mail B2C e-commerce company. Baby Lattice aliyun oss credentials have information leakage vulnerability. The vulnerability stems from the existence of information leakage of aliyun oss credentials, when using this SDK, the accessKeyId and accessKeySecret,...

6.7AI score
Exploits0
CNVD
CNVD
added 2017/06/28 12:0 a.m.1 views

EC Lite APP aliyun oss credentials have information leakage vulnerability

Aliyun Object Storage Service OSS is a massive, secure and highly reliable cloud storage service provided by Aliyun. An information disclosure vulnerability exists in EC Lite aliyun oss credentials. When using this SDK, the accessKeyId and accessKeySecret, endpoint are built into the mobile...

6.4AI score
Exploits0
CNVD
CNVD
added 2017/06/09 12:0 a.m.2 views

National Security Community App aliyun oss credentials have information leakage vulnerability

Aliyun Object Storage Service OSS is a massive, secure and highly reliable cloud storage service provided by Aliyun. National Security Community aliyun oss credentials have an information leakage vulnerability. When using this SDK, accessKeyId and accessKeySecret, endpoint are built into the mobi...

6.7AI score
Exploits0
Rows per page
Query Builder