Lucene search
+L

243 matches found

Hacker One
Hacker One
added 2020/11/24 9:45 p.m.15 views

Elastic: Async search stores authorization headers in clear text

Summary: The .async-search index stores the results of async searches. It also stores a copy of the requests authorization headers, in clear text. These clear text authorization headers are then available to anyone with access to .async-search, probably mostly super users. Description: While you...

1.1AI score
Exploits0
OpenVAS
OpenVAS
added 2020/09/02 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-4480-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.5AI score0.04918EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2020/09/01 11:10 a.m.65 views

USN-4480-1: OpenStack Keystone vulnerabilities

It was discovered that OpenStack Keystone incorrectly handled EC2 credentials. An authenticated attacker with a limited scope could possibly create EC2 credentials with escalated permissions. CVE-2020-12689, CVE-2020-12691 It was discovered that OpenStack Keystone incorrectly handled the list of...

8.8CVSS7AI score0.04918EPSS
Exploits0
OSV
OSV
added 2020/04/29 6:15 p.m.18 views

CVE-2020-11021

Actions Http-Client NPM @actions/http-client before version 1.0.8 can disclose Authorization headers to incorrect domain in certain redirect scenarios. The conditions in which this happens are if consumers of the http-client: 1. make an http request with an authorization header 2. that request...

7.5CVSS7.4AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/10/23 2:14 p.m.30 views

Insufficiently Protected Credentials in Pivotal Reactor Netty

Pivotal Reactor Netty, versions prior to 0.8.11, passes headers through redirects, including authorization ones. A remote unauthenticated malicious user may gain access to credentials for a different server than they have access to...

8.6CVSS4.9AI score0.00894EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/10/23 2:14 p.m.29 views

GHSA-J52R-XC68-Q8F4 Insufficiently Protected Credentials in Pivotal Reactor Netty

Pivotal Reactor Netty, versions prior to 0.8.11, passes headers through redirects, including authorization ones. A remote unauthenticated malicious user may gain access to credentials for a different server than they have access to...

8.6CVSS8.7AI score0.00894EPSS
Exploits0References2
OSV
OSV
added 2019/09/06 9:9 p.m.17 views

MGASA-2019-0258 Updated python-urllib3 packages fix security vulnerability

It was discovered that urllib3 incorrectly removed Authorization HTTP headers when handled cross-origin redirects. This could result in credentials being sent to unintended hosts CVE-2018-20060. It was discovered that urllib3 incorrectly stripped certain characters from requests. A remote attacke...

9.8CVSS7.1AI score0.04488EPSS
Exploits1References3
OSV
OSV
added 2018/09/25 3:29 p.m.4 views

CVE-2018-1664

IBM DataPower Gateway 7.1.0.0 - 7.1.0.23, 7.2.0.0 - 7.2.0.21, 7.5.0.0 - 7.5.0.16, 7.5.1.0 - 7.5.1.15, 7.5.2.0 - 7.5.2.15, and 7.6.0.0 - 7.6.0.8 as well as IBM DataPower Gateway CD 7.7.0.0 - 7.7.1.2 echoing of AMP management interface authorization headers exposes login credentials in browser cach...

7.8CVSS5.8AI score0.00379EPSS
Exploits0References2
OSV
OSV
added 2018/01/24 8:0 a.m.12 views

CURL-CVE-2018-1000007 HTTP authentication leak in redirects

curl might leak authentication data to third parties. When asked to send custom headers in its HTTP requests, curl sends that set of headers first to the host in the initial URL but also, if asked to follow redirects and a 30X HTTP response code is returned, to the host mentioned in URL in the...

9.8CVSS8.9AI score0.08031EPSS
Exploits0
NVD
NVD
added 2017/07/13 4:29 p.m.31 views

CVE-2017-9788

In Apache httpd before 2.2.34 and 2.4.x before 2.4.27, the value placeholder in Proxy-Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments by modauthdigest. Providing an initial key with no '=' assignment could reflect the stale...

9.1CVSS8.2AI score0.5677EPSS
Exploits0References46
Apache Httpd
Apache Httpd
added 2017/06/28 12:0 a.m.148 views

Apache Httpd < 2.4.27 : Uninitialized memory reflection in mod_auth_digest

The value placeholder in Proxy-Authorization headers of type 'Digest' was not initialized or reset before or between successive key=value assignments. by modauthdigest. Providing an initial key with no '=' assignment could reflect the stale value of uninitialized pool memory used by the prior...

9.1CVSS3.1AI score0.5677EPSS
Exploits0Affected Software1
NVD
NVD
added 2017/06/16 9:29 p.m.23 views

CVE-2016-1000221

Logstash prior to version 2.3.4, Elasticsearch Output plugin would log to file HTTP authorization headers which could contain sensitive information...

7.5CVSS7.5AI score0.01765EPSS
Exploits0References2
OSV
OSV
added 2017/06/16 9:29 p.m.25 views

CVE-2016-1000221

Logstash prior to version 2.3.4, Elasticsearch Output plugin would log to file HTTP authorization headers which could contain sensitive information...

7.5CVSS6.6AI score
Exploits0References2
CVE
CVE
added 2017/06/16 9:0 p.m.64 views

CVE-2016-1000219

CVE-2016-1000219 affects Kibana prior to 4.5.4 and 4.1.11. When a custom output is configured for logging in, cookies and authorization headers could be written to Kibana log files, enabling a local attacker to hijack sessions of other users in environments using authentication like Shield. The p...

7.5CVSS7.4AI score0.02039EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/06/16 9:0 p.m.33 views

CVE-2016-1000219

Kibana before 4.5.4 and 4.1.11 when a custom output is configured for logging in, cookies and authorization headers could be written to the log files. This information could be used to hijack sessions of other users when using Kibana behind some form of authentication such as Shield...

7.5AI score0.02039EPSS
Exploits0References2
Elastic
Elastic
added 2016/07/07 4:57 p.m.5 views

Logstash 2.3.3 Elasticsearch Output Vulnerability

Hi all, we would like to announce a security vulnerability we discovered in our testing. Logstash 2.3.4 has been released with a patch to fix this. Issue Prior to version 2.3.4, Elasticsearch Output plugin would log to file HTTP authorization headers which could contain sensitive information...

6.9AI score
Exploits0
NVD
NVD
added 2016/07/02 2:59 p.m.13 views

CVE-2016-3956

The CLI in npm before 2.15.1 and 3.x before 3.8.3, as used in Node.js 0.10 before 0.10.44, 0.12 before 0.12.13, 4 before 4.4.2, and 5 before 5.10.0, includes bearer tokens with arbitrary requests, which allows remote HTTP servers to obtain sensitive information by reading Authorization headers...

7.5CVSS7.4AI score0.06748EPSS
Exploits0References6
OSV
OSV
added 2016/07/02 2:59 p.m.2 views

DEBIAN-CVE-2016-3956

The CLI in npm before 2.15.1 and 3.x before 3.8.3, as used in Node.js 0.10 before 0.10.44, 0.12 before 0.12.13, 4 before 4.4.2, and 5 before 5.10.0, includes bearer tokens with arbitrary requests, which allows remote HTTP servers to obtain sensitive information by reading Authorization headers...

7.5CVSS7.3AI score0.06748EPSS
Exploits0References1
OSV
OSV
added 2016/07/02 2:59 p.m.11 views

CVE-2016-3956

The CLI in npm before 2.15.1 and 3.x before 3.8.3, as used in Node.js 0.10 before 0.10.44, 0.12 before 0.12.13, 4 before 4.4.2, and 5 before 5.10.0, includes bearer tokens with arbitrary requests, which allows remote HTTP servers to obtain sensitive information by reading Authorization headers...

7.5CVSS7.3AI score
Exploits0References6
Prion
Prion
added 2016/07/02 2:59 p.m.17 views

Authorization

The CLI in npm before 2.15.1 and 3.x before 3.8.3, as used in Node.js 0.10 before 0.10.44, 0.12 before 0.12.13, 4 before 4.4.2, and 5 before 5.10.0, includes bearer tokens with arbitrary requests, which allows remote HTTP servers to obtain sensitive information by reading Authorization headers...

5CVSS6.7AI score0.06748EPSS
Exploits0References6Affected Software3
Rows per page
Query Builder