66 matches found
EUVD-2025-208147
The CGM CLININET system provides smart card authentication; however, authentication is conducted locally on the client device, and, in reality, only the certificate number is used for access verification. As a result, possession of the certificate number alone is sufficient for authentication,...
CGM CLININET 安全漏洞
CGM CLININET is a hospital information management system developed by the German company CGM. CGM CLININET has a security vulnerability, which stems from a flaw in smart card authentication. Verification can be completed using only the certificate number...
PT-2026-22574
Name of the Vulnerable Software and Affected Versions CGM CLININET system affected versions not specified Description The CGM CLININET system uses smart card authentication, but authentication happens locally on the client device. Instead of verifying the smart card and private key, only the...
EUVD-2018-8637
Malware in sbrugna...
CVE-2019-3980
The Solarwinds Dameware Mini Remote Client agent v12.1.0.89 supports smart card authentication which can allow a user to upload an executable to be executed on the DWRCS.exe host. An unauthenticated, remote attacker can request smart card login and upload and execute an arbitrary executable run...
How to Configure StoreFront and Smart Card Authentication for Internal Users using Stores
This article describes how to configure Citrix StoreFront 2.0 and Smart Card authentication using Gemalto .NET cards against stores for internal users. Requirements The following components are needed to allow users connectthrough Smart Card to StoreFront: Citrix StoreFront 2.x Citrix Receiver fo...
April 9, 2024—KB5036910 (OS Build 25398.830)
None None...
April 9, 2024—KB5036894 (OS Build 22000.2899)
None None...
The vulnerability of the Git-based software platform for collaborative code development on GitLab stems from improper verification of certificates during authentication using smart cards. This allows a perpetrator to impersonate another user and pass identity verification.
The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to improper verification of the certificate during authentication using smart cards. Exploiting this vulnerability allows a malicious actor, operating remotely, to bypass the authenticity...
January 9, 2024—KB5034127 (OS Build 17763.5329) - EXPIRED
None None...
GitLab Trust Management Issues Vulnerabilities
GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. GitLab has a trust management issue vulnerability that stems from allowing an...
October 10, 2023—KB5031364 (OS Build 20348.2031)
None None...
SUSE CVE-2018-16841
Samba from version 4.3.0 and before versions 4.7.12, 4.8.7 and 4.9.3 are vulnerable to a denial of service. When configured to accept smart-card authentication, Samba's KDC will call tallocfree twice on the same memory if the principal in a validly signed certificate does not match the principal ...
August 9, 2022—KB5016622 (OS Build 14393.5291) - EXPIRED
None None...
August 9, 2022—KB5016681 (Monthly Rollup)
None None...
August 9, 2022—KB5016686 (Security-only update)
None None...
Ubuntu: Security Advisory (USN-3827-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
August 10, 2021—KB5005099 (Monthly Rollup)
None None...
August 10, 2021—KB5005088 (Monthly Rollup)
None None...
August 10, 2021—KB5005095 (Security-only update)
None None...