CVE-2024-48951

An issue was discovered in Logpoint before 7.5.0. Server-Side Request Forgery SSRF on SOAR can be used to leak Logpoint's API Token leading to authentication bypass...

CVE-2024-48951

An issue was discovered in Logpoint before 7.5.0. Server-Side Request Forgery SSRF on SOAR can be used to leak Logpoint's API Token leading to authentication bypass...

Logpoint 安全漏洞

Logpoint is a network security application from the Danish company Logpoint. A security vulnerability exists in Logpoint versions prior to 7.5.0 that originates from an authenticated user entering unauthenticated input during EventHub Collector setup, which can lead to remote code execution...

CVE-2024-48954

An issue was discovered in Logpoint before 7.5.0. Unvalidated input during the EventHub Collector setup by an authenticated user leads to Remote Code execution...

Logpoint 安全漏洞

Logpoint is a network security application from the Danish company Logpoint. A security vulnerability exists in Logpoint versions prior to 7.5.0 that stems from an exposed endpoint used by a distributed Logpoint setup, allowing an unauthenticated attacker to bypass CSRF protection and...

CVE-2024-48954

CVE-2024-48954 affects Logpoint before 7.5.0. The issue arises from unvalidated input during the EventHub Collector setup by an authenticated user, enabling remote code execution. The description consistently ties the vulnerability to the EventHub Collector setup flow and authenticated input hand...

CVE-2024-48952

An issue was discovered in Logpoint before 7.5.0. SOAR uses a static JWT secret key to generate tokens that allow access to SOAR API endpoints without authentication. This static key vulnerability enables attackers to create custom JWT secret keys for unauthorized access to these endpoints...

CVE-2024-48954

An issue was discovered in Logpoint before 7.5.0. Unvalidated input during the EventHub Collector setup by an authenticated user leads to Remote Code execution...

CVE-2024-48953

CVE-2024-48953 affects Logpoint versions prior to 7.5.0. Unauthenticated users could register their own authentication plugins due to missing authorization checks on endpoints that create, edit, or delete third‑party authentication modules, leading to unauthorized access. Affected product: Logpoi...

CVE-2024-48951

CVE-2024-48951 concerns Logpoint prior to 7.5.0, where a Server-Side Request Forgery (SSRF) on the SOAR component can be abused to disclose the system’s API token, resulting in authentication bypass. Affected product: Logpoint SOAR within the Logpoint platform (versions

PT-2024-33293 · Logpoint · Logpoint

Name of the Vulnerable Software and Affected Versions: Logpoint versions prior to 7.5.0 Description: An issue in Logpoint allows Server-Side Request Forgery SSRF on SOAR, which can be used to leak Logpoint's API Token, leading to authentication bypass. Recommendations: For versions prior to 7.5.0...

CVE-2024-48953

An issue was discovered in Logpoint before 7.5.0. Endpoints for creating, editing, or deleting third-party authentication modules lacked proper authorization checks. This allowed unauthenticated users to register their own authentication plugins in Logpoint, resulting in unauthorized access...

PT-2024-33295 · Logpoint · Logpoint

Name of the Vulnerable Software and Affected Versions: Logpoint versions prior to 7.5.0 Description: An issue was discovered in Logpoint where endpoints for creating, editing, or deleting third-party authentication modules lacked proper authorization checks. This allowed unauthenticated users to...

CVE-2024-48950

An issue was discovered in Logpoint before 7.5.0. An endpoint used by Distributed Logpoint Setup was exposed, allowing unauthenticated attackers to bypass CSRF protections and authentication...

CVE-2024-48952

CVE-2024-48952 affects Logpoint prior to 7.5.0. The issue arises from SOAR using a static JWT secret key to generate tokens, which can allow attackers to access SOAR API endpoints without authentication. This enables creation of custom JWT secret keys for unauthorized access. The Red Hat and PT S...

PT-2024-33292 · Logpoint · Logpoint

Name of the Vulnerable Software and Affected Versions: Logpoint versions prior to 7.5.0 Description: An issue was discovered in Logpoint where an endpoint used by Distributed Logpoint Setup was exposed. This exposure allows unauthenticated attackers to bypass CSRF protections and authentication...

Microsoft Azure NodeJS LogPoint logpointsassets Uncontrolled Search Path Element Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NodeJS LogPoint for Microsoft Azure. Authentication is not required to exploit this vulnerability. The specific flaw exists within the installation of NodeJS LogPoint. When installed from the officia...

The vulnerability of the single-input module in the LogPoint SAML Authentication application, related to improper external management of file names or paths, allows a malicious actor to delete any file and cause authentication failures when entering the system.

The vulnerability of the single-input module in the LogPoint SAML Authentication application is related to incorrect external management of file names or paths. Exploiting this vulnerability could allow a malicious actor to delete any desired file and cause authentication failures when logging in...

CVE-2024-36383

An issue was discovered in Logpoint SAML Authentication before 6.0.3. An attacker can place a crafted filename in the state field of a SAML SSO-URL response, and the file corresponding to this filename will ultimately be deleted. This can lead to a SAML Authentication login outage...

CVE-2024-36383

An issue was discovered in Logpoint SAML Authentication before 6.0.3. An attacker can place a crafted filename in the state field of a SAML SSO-URL response, and the file corresponding to this filename will ultimately be deleted. This can lead to a SAML Authentication login outage...