4 matches found
PT-2024-23300 · Solana · @Solana/Web3.Js
Name of the Vulnerable Software and Affected Versions: @solana/web3.js versions prior to 1.0.1 @solana/web3.js versions prior to 1.10.2 @solana/web3.js versions prior to 1.11.1 @solana/web3.js versions prior to 1.12.1 @solana/web3.js versions prior to 1.1.2 @solana/web3.js versions prior to 1.13....
Envoy 资源管理错误漏洞
Envoy is an open source distributed proxy server. versions prior to Envoy 1.22.1 are vulnerable to a resource management error, which stems from the fact that it is insecure to redirect requests with body text or trailers within Envoy, and an attacker could exploit the vulnerability to crash the...
PT-2022-19477 · Envoy · Envoy
Name of the Vulnerable Software and Affected Versions: Envoy versions prior to 1.22.1 Description: The OAuth filter implementation in Envoy does not include a mechanism for validating access tokens. By design, when the HMAC signed cookie is missing, a full authentication flow should be triggered...
Portainer Access Control Error Vulnerability (CNVD-2019-40489)
Portainer is an open source lightweight management UI that allows you to easily manage docker hosts or clusters. An Access Control Error vulnerability exists in the RBAC extension in Portainer versions prior to 1.22.1. An attacker can exploit this vulnerability to access sensitive information via...