Lucene search
K

6 matches found

EUVD
EUVD
added 2026/06/29 12:31 a.m.9 views

EUVD-2026-40009

A vulnerability was identified in Databend up to 1.2.881 on HTTP. This affects the function ClientSessionManager::statekey of the file src/query/service/src/servers/http/v1/session/clientsessionmanager.rs of the component Tenant Handler. The manipulation leads to authorization bypass. It is...

6.5CVSS6.2AI score0.0022EPSS
Exploits0References7
NVD
NVD
added 2026/06/28 11:16 p.m.11 views

CVE-2026-13512

A vulnerability was identified in Databend up to 1.2.881 on HTTP. This affects the function ClientSessionManager::statekey of the file src/query/service/src/servers/http/v1/session/clientsessionmanager.rs of the component Tenant Handler. The manipulation leads to authorization bypass. It is...

6.5CVSS0.0022EPSS
Exploits0References6
CVE
CVE
added 2026/06/28 10:45 p.m.19 views

CVE-2026-13512

Databend up to version 1.2.881 on HTTP is affected. The issue resides in Tenant Handler’s ClientSessionManager::state_key (src/query/service/src/servers/http/v1/session/client_session_manager.rs) and enables authorization bypass. Exploitation may be initiated remotely; a publicly available exploi...

6.5CVSS6.2AI score0.0022EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/28 10:45 p.m.10 views

CVE-2026-13512

A vulnerability was identified in Databend up to 1.2.881 on HTTP. This affects the function ClientSessionManager::statekey of the file src/query/service/src/servers/http/v1/session/clientsessionmanager.rs of the component Tenant Handler. The manipulation leads to authorization bypass. It is...

6.5CVSS5.4AI score0.0022EPSS
Exploits0References6
OSV
OSV
added 2026/06/28 10:45 p.m.5 views

CVE-2026-13512 Databend Tenant client_session_manager.rs state_key authorization

A vulnerability was identified in Databend up to 1.2.881 on HTTP. This affects the function ClientSessionManager::statekey of the file src/query/service/src/servers/http/v1/session/clientsessionmanager.rs of the component Tenant Handler. The manipulation leads to authorization bypass. It is...

5.3CVSS6.2AI score0.0022EPSS
Exploits0References8
Kitploit
Kitploit
added 2022/05/16 12:30 p.m.68 views

Chlonium - Chromium Cookie Import / Export Tool

Chlonium is an application designed for cloning Chromium Cookies. From Chromium 80 and upwards, cookies are encrypted using AES-256 GCM, with a state key which is stored in the Local State file. This state key is encrypted using DPAPI. This is a change from older versions, which used DPAPI to...

6.9AI score
Exploits0References6
Rows per page
Query Builder