Lucene search
+L

3 matches found

Vulnrichment
Vulnrichment
added 2024/10/24 5:55 p.m.8 views

CVE-2024-10295 Gateway: apicast basic auth bypass via malformed base64 headerssending non-base64 'basic' auth with special characters causes apicast to incorrectly authenticate a request

A flaw was found in Gateway. Sending a non-base64 'basic' auth with special characters can cause APICast to incorrectly authenticate a request. A malformed basic authentication header containing special characters bypasses authentication and allows unauthorized access to the backend. This issue c...

7.5CVSS6.9AI score0.00387EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/24 5:55 p.m.23 views

CVE-2024-10295 Gateway: apicast basic auth bypass via malformed base64 headerssending non-base64 'basic' auth with special characters causes apicast to incorrectly authenticate a request

A flaw was found in Gateway. Sending a non-base64 'basic' auth with special characters can cause APICast to incorrectly authenticate a request. A malformed basic authentication header containing special characters bypasses authentication and allows unauthorized access to the backend. This issue c...

7.5CVSS0.00387EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/10/23 10:44 a.m.9 views

CVE-2024-10295

A flaw was found in Gateway. Sending a non-base64 'basic' auth with special characters can cause APICast to incorrectly authenticate a request. A malformed basic authentication header containing special characters bypasses authentication and allows unauthorized access to the backend. This issue c...

7.5CVSS5.7AI score0.00387EPSS
Exploits0References3
Rows per page
Query Builder