Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:1 a.m.11 views

CVE-2023-42442

JumpServer is an open source bastion host and a professional operation and maintenance security audit system. Starting in version 3.0.0 and prior to versions 3.5.5 and 3.6.4, session replays can download without authentication. Session replays stored in S3, OSS, or other cloud storage are not...

8.2CVSS6.7AI score0.55861EPSS
Exploits5References1
GithubExploit
GithubExploit
added 2023/10/20 8:33 a.m.595 views

Exploit for Improper Authentication in Fit2Cloud Jumpserver

CVE-2023-42442 CVE-2023-42442 – JumpServer Session recording...

8.2CVSS6.2AI score0.55861EPSS
Exploits5
GithubExploit
GithubExploit
added 2023/10/14 9:35 a.m.279 views

Exploit for Improper Authentication in Fit2Cloud Jumpserver

BlackJump Chinese |...

8.2CVSS6.8AI score0.55861EPSS
Exploits7
GithubExploit
GithubExploit
added 2023/10/14 9:35 a.m.255 views

Exploit for Improper Authentication in Fit2Cloud Jumpserver

BlackJump Chinese |...

8.2CVSS6.8AI score0.55861EPSS
Exploits7
GithubExploit
GithubExploit
added 2023/09/27 5:9 a.m.144 views

Exploit for Improper Authentication in Fit2Cloud Jumpserver

Process of exploiting the JumpServer unauthorized acce...

8.2CVSS6.1AI score0.55861EPSS
Exploits5
CVE
CVE
added 2023/09/15 8:29 p.m.81 views

CVE-2023-42442

Summary: CVE-2023-42442 affects JumpServer (3.0.0 up to versions before 3.5.5 and 3.6.4). The vulnerability is an authentication flaw in the API /api/v1/terminal/sessions/ that allows anonymous access, enabling information disclosure. Additionally, session replays can be downloaded without authen...

8.2CVSS6.5AI score0.55861EPSS
Exploits5References3Affected Software1
OSV
OSV
added 2023/09/15 8:29 p.m.26 views

CVE-2023-42442 JumpServer session replays download without authentication

JumpServer is an open source bastion host and a professional operation and maintenance security audit system. Starting in version 3.0.0 and prior to versions 3.5.5 and 3.6.4, session replays can download without authentication. Session replays stored in S3, OSS, or other cloud storage are not...

8.2CVSS5.4AI score0.55861EPSS
Exploits5References5
Rows per page
Query Builder