2 matches found
SUSE CVE-2026-27855
Dovecot OTP authentication is vulnerable to replay attack under specific conditions. If auth cache is enabled, and username is altered in passdb, then OTP credentials can be cached so that same OTP reply is valid. An attacker able to observe an OTP exchange is able to log in as the user. If...
Security Bulletin: A Security Vulnerability affects IBM® Cloud Private (CVE-2018-1843)
Summary IBM Cloud Private is vulnerable to a security vulnerability Vulnerability Details CVEID: CVE-2018-1843 DESCRIPTION: The Identity and Access Management IAM services do not use a secure channel, such as SSL, to exchange information only when accessed internally from within the cluster. It...