4 matches found
CVE-2020-36569
Authentication is globally bypassed in github.com/nanobox-io/golang-nanoauth between v0.0.0-20160722212129-ac0cc4484ad4 and v0.0.0-20200131131040-063a3fb69896 if ListenAndServe is called with an empty token...
CVE-2020-36569
creationtimestamp| type| source ---|---|--- 2022-12-28 00:12:05+00:00| seen| https://t.me/cibsecurity/55453 2025-04-11 23:51:40+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11526...
CVE-2020-36569
The CVE-2020-36569 entry concerns golang-nanoauth, where authentication is bypassed in the authentication layer when ListenAndServe is invoked with an empty token. Affected versions are v0.0.0-20160722212129-ac0cc4484ad4 through v0.0.0-20200131131040-063a3fb69896. The issue is described as an aut...
CVE-2020-36569 Authentication bypass in github.com/nanobox-io/golang-nanoauth
Authentication is globally bypassed in github.com/nanobox-io/golang-nanoauth between v0.0.0-20160722212129-ac0cc4484ad4 and v0.0.0-20200131131040-063a3fb69896 if ListenAndServe is called with an empty token...