Lucene search
K

95 matches found

RedHat Linux
RedHat Linux
added 2026/04/02 1:53 p.m.4 views

keycloak: Keycloak: Replay of action tokens via improper handling of single-use entries

A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper type and namespace isolation. This vulnerability allows an attacker to delete arbitrary single-use entries, which can enable the replay of consumed action tokens, such as password reset links. This...

5.3CVSS6AI score0.0025EPSS
Exploits0References4
CVE
CVE
added 2026/04/02 12:44 p.m.17 views

CVE-2026-4325

CVE-2026-4325 involves Keycloak’s SingleUseObjectProvider, a global key-value store, lacking proper type and namespace isolation. The issue allows an attacker to delete arbitrary single-use entries, enabling the replay of consumed action tokens (e.g., password reset links) and potentially leading...

5.3CVSS5.9AI score0.0025EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/04/02 12:44 p.m.498 views

CVE-2026-4282

CVE-2026-4282 describes a flaw in Keycloak where the SingleUseObjectProvider is not properly isolated by type and namespace. An unauthenticated attacker can forge authorization codes, potentially leading to creation of admin-capable access tokens and privilege escalation. The available documents ...

7.4CVSS5.8AI score0.00424EPSS
Exploits0References7Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/02 12:37 p.m.5 views

CVE-2026-4325

A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper type and namespace isolation. This vulnerability allows an attacker to delete arbitrary single-use entries, which can enable the replay of consumed action tokens, such as password reset links. This...

5.3CVSS5.9AI score0.0025EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.8 views

Keycloak 安全漏洞

Keycloak is an open-source identity and access management solution developed by Keycloak. Keycloak has a security vulnerability that stems from the lack of proper type and namespace isolation in SingleUseObjectProvider. This vulnerability could allow attackers to delete single-use entries, thereb...

5.3CVSS5.8AI score0.0025EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.4 views

PT-2026-29729

Name of the Vulnerable Software and Affected Versions Red Hat build of Keycloak version 26.2 Description A flaw exists in the SingleUseObjectProvider, which serves as a global key-value store, due to a lack of proper type and namespace isolation. This allows an unauthenticated attacker to forge...

7.4CVSS5.8AI score0.00424EPSS
Exploits0References14
Cvelist
Cvelist
added 2026/03/31 2:25 p.m.20 views

CVE-2026-34224 Parse Server: MFA single-use token bypass via concurrent authData login requests

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.64 and 9.7.0-alpha.8, an attacker who possesses a valid authentication provider token and a single MFA recovery code or SMS one-time password can create multiple...

2.1CVSS0.00311EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/03/29 3:23 p.m.5 views

Parse Server has an MFA single-use token bypass via concurrent authData login requests

Impact An attacker who possesses a valid authentication provider token and a single MFA recovery code or SMS one-time password can create multiple authenticated sessions by sending concurrent login requests via the authData login endpoint. This defeats the single-use guarantee of MFA recovery cod...

4.4CVSS5.9AI score0.00311EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/29 12:0 a.m.7 views

PT-2026-28613

Name of the Vulnerable Software and Affected Versions Parse Server versions prior to 8.6.64 Parse Server versions prior to 9.7.0-alpha.8 Description Parse Server is an open source backend deployable on Node.js infrastructure. An attacker with a valid authentication provider token and a single MFA...

4.4CVSS5.9AI score0.00311EPSS
Exploits0References12
OSV
OSV
added 2026/03/27 7:14 a.m.3 views

BIT-PARSE-2026-33624 Parse Server: MFA recovery code single-use bypass via concurrent requests

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.60 and 9.6.0, an attacker who obtains a user's password and a single MFA recovery code can reuse that recovery code an unlimited number of times by sending concurrent logi...

2.7CVSS5.8AI score0.00175EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/03/24 7:48 p.m.12 views

Parse Server: MFA recovery code single-use bypass via concurrent requests

Impact An attacker who obtains a user's password and a single MFA recovery code can reuse that recovery code an unlimited number of times by sending concurrent login requests. This defeats the single-use design of recovery codes. The attack requires the user's password, a valid recovery code, and...

2.7CVSS5.9AI score0.00175EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/03/24 6:28 p.m.14 views

CVE-2026-33624

CVE-2026-33624 affects Parse Server. Prior to versions 8.6.60 and 9.6.0-alpha.54, an attacker who knows a user’s password and a valid MFA recovery code can reuse that code indefinitely by sending concurrent login requests, defeating the single‑use design of recovery codes. Impacted component: MFA...

2.7CVSS5.8AI score0.00175EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/03/24 6:28 p.m.25 views

CVE-2026-33624 Parse Server: MFA recovery code single-use bypass via concurrent requests

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.60 and 9.6.0-alpha.54, an attacker who obtains a user's password and a single MFA recovery code can reuse that recovery code an unlimited number of times by sending...

2.1CVSS0.00175EPSS
Exploits0References5
NVD
NVD
added 2026/03/18 10:16 p.m.5 views

CVE-2026-32943

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.28 and 8.6.48, the password reset mechanism does not enforce single-use guarantees for reset tokens. When a user requests a password reset, the generated token can be...

3.1CVSS0.00207EPSS
Exploits0References3
CVE
CVE
added 2026/03/18 9:46 p.m.18 views

CVE-2026-32943

Parse Server prior to versions 9.6.0-alpha.28 and 8.6.48 did not enforce single-use for password-reset tokens, allowing a token to be consumed by concurrent requests. An attacker with an intercepted token could race a legitimate reset request, potentially changing a target account’s password. Sta...

3.1CVSS5.8AI score0.00207EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/18 9:46 p.m.4 views

CVE-2026-32943 Parse Server has a password reset token single-use bypass via concurrent requests

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.28 and 8.6.48, the password reset mechanism does not enforce single-use guarantees for reset tokens. When a user requests a password reset, the generated token can be...

2.3CVSS5.8AI score0.00207EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/03/17 5:40 p.m.20 views

Parse Server has a password reset token single-use bypass via concurrent requests

Impact The password reset mechanism does not enforce single-use guarantees for reset tokens. When a user requests a password reset, the generated token can be consumed by multiple concurrent requests within a short time window. An attacker who has intercepted a password reset token can race the...

3.1CVSS5.8AI score0.00207EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/03/16 8:40 p.m.2 views

GHSA-63F5-HHC7-CX6P OpenClaw bootstrap setup codes could be replayed to escalate pending pairing scopes before approval

Summary openclaw versions = 2026.3.12 allowed bootstrap setup codes to be replayed before approval, which could widen the scopes on a pending device pairing request. Affected Packages / Versions - Package: openclaw npm - Affected versions: = 2026.3.12 - Fixed version: 2026.3.13 Details The...

8.6CVSS5.9AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/03/16 8:40 p.m.7 views

OpenClaw bootstrap setup codes could be replayed to escalate pending pairing scopes before approval

Summary openclaw versions = 2026.3.12 allowed bootstrap setup codes to be replayed before approval, which could widen the scopes on a pending device pairing request. Affected Packages / Versions - Package: openclaw npm - Affected versions: = 2026.3.12 - Fixed version: 2026.3.13 Details The...

5.8AI score
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/13 12:28 p.m.3 views

BIT-PARSE-2026-31875 Parse Server MFA recovery codes not consumed after use

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0 and 8.6.33, when multi-factor authentication MFA via TOTP is enabled for a user account, Parse Server generates two single-use recovery codes. These codes are intended as a...

8.2CVSS5.8AI score0.0044EPSS
Exploits0References4
Rows per page
Query Builder