Lucene search
+L

9 matches found

debian
debian
added 2024/12/09 3:9 a.m.37 views

[SECURITY] [DLA 3989-1] ruby-doorkeeper security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3989-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk December 09, 2024 https://wiki.debian.org/LTS -...

6.5CVSS6.4AI score0.00716EPSS
Exploits1
nessus
nessus
added 2024/12/09 12:0 a.m.12 views

Debian dla-3989 : ruby-doorkeeper - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-3989 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3989-1 [email protected] https://www.debian.org/lts/security/...

6.5CVSS6.4AI score0.00716EPSS
Exploits1References4
openvas
openvas
added 2023/07/13 12:0 a.m.13 views

Debian: Security Advisory (DLA-3494-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.00716EPSS
Exploits1References3
debian
debian
added 2023/07/12 1:13 p.m.49 views

[SECURITY] [DLA 3494-1] ruby-doorkeeper security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3494-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb July 12, 2023 https://wiki.debian.org/LTS -...

6.5CVSS5.5AI score0.00716EPSS
Exploits1
nessus
nessus
added 2023/07/12 12:0 a.m.17 views

Debian dla-3494 : ruby-doorkeeper - security update

The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3494 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3494-1 [email protected] https://www.debian.org/lts/security/...

6.5CVSS6.5AI score0.00716EPSS
Exploits1References4
nessus
nessus
added 2023/07/10 12:0 a.m.24 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 : Doorkeeper vulnerability (USN-6210-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 host has a package installed that is affected by a vulnerability as referenced in the USN-6210-1 advisory. It was discovered that Doorkeeper incorrectly performed authorization checks for public clients that have been previou...

6.5CVSS6.5AI score0.00716EPSS
Exploits1References2
nvd
nvd
added 2023/06/12 5:15 p.m.18 views

CVE-2023-34246

Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape. Prior to version 5.6.6, Doorkeeper automatically processes authorization requests without user consent for public clients that have been previous approved. Public clients are inherently vulnerable to impersonation, their identity cannot...

6.5CVSS5.2AI score0.00716EPSS
Exploits1References7
cve
cve
added 2023/06/12 4:33 p.m.162 views

CVE-2023-34246

CVE-2023-34246 affects ruby-doorkeeper, an OAuth 2 provider for Ruby on Rails and Grape. Prior to Doorkeeper 5.6.6, the gem could automatically process authorization requests for public clients that had been previously approved, enabling potential impersonation of public clients due to identity n...

6.5CVSS6.1AI score0.00716EPSS
Exploits1References7Affected Software1
cvelist
cvelist
added 2023/06/12 4:33 p.m.31 views

CVE-2023-34246 Doorkeeper Improper Authentication vulnerability

Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape. Prior to version 5.6.6, Doorkeeper automatically processes authorization requests without user consent for public clients that have been previous approved. Public clients are inherently vulnerable to impersonation, their identity cannot...

4.2CVSS6.5AI score0.00716EPSS
Exploits1References6
Rows per page
Query Builder