Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:21 a.m.10 views

CVE-2023-42820

JumpServer is an open source bastion host. This vulnerability is due to exposing the random number seed to the API, potentially allowing the randomly generated verification codes to be replayed, which could lead to password resets. If MFA is enabled users are not affect. Users not using local...

8.2CVSS6.9AI score0.05404EPSS
Exploits4
GithubExploit
GithubExploit
added 2023/10/14 9:35 a.m.277 views

Exploit for Improper Authentication in Fit2Cloud Jumpserver

BlackJump Chinese |...

8.2CVSS6.8AI score0.55861EPSS
Exploits7
GithubExploit
GithubExploit
added 2023/10/14 9:35 a.m.255 views

Exploit for Improper Authentication in Fit2Cloud Jumpserver

BlackJump Chinese |...

8.2CVSS6.8AI score0.55861EPSS
Exploits7
GithubExploit
GithubExploit
added 2023/10/10 6:32 a.m.778 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Fit2Cloud Jumpserver

CVE-2023-42820 CVE-2023-42820 Vulnerability Description...

8.2CVSS7.3AI score0.05404EPSS
Exploits4
NVD
NVD
added 2023/09/27 3:19 p.m.35 views

CVE-2023-42820

JumpServer is an open source bastion host. This vulnerability is due to exposing the random number seed to the API, potentially allowing the randomly generated verification codes to be replayed, which could lead to password resets. If MFA is enabled users are not affect. Users not using local...

8.2CVSS7.4AI score0.05404EPSS
Exploits4References2
ATTACKERKB
ATTACKERKB
added 2023/09/27 12:0 a.m.132 views

CVE-2023-42820

JumpServer is an open source bastion host. This vulnerability is due to exposing the random number seed to the API, potentially allowing the randomly generated verification codes to be replayed, which could lead to password resets. If MFA is enabled users are not affect. Users not using local...

8.2CVSS6.9AI score0.05404EPSS
In wildExploits4References3
CVE
CVE
added 2023/09/26 8:35 p.m.2683 views

CVE-2023-42820

JumpServer exposes the random number seed to its API, enabling replay of generated verification codes and potentially password resets. Affected versions include 2.28.19 and 3.6.5; upgrades to these versions are recommended. If MFA is enabled or if users are not using local authentication, they ar...

8.2CVSS7.5AI score0.05404EPSS
In wildExploits4References2Affected Software1
Rows per page
Query Builder