Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2024/02/26 8:4 p.m.9 views

com.linecorp.centraldogma:centraldogma-server-auth-saml (>=0.33.0 <=0.64.2) potentially affected by CVE-2024-1735 via com.linecorp.armeria:armeria-saml (>=0.76.2 <=1.27.1)

com.linecorp.armeria:armeria-saml MAVEN version =0.76.2, =0.33.0, =0.64.2 Source cves: CVE-2024-1735 Source advisory: OSV:GHSA-4M6J-23P2-8C54...

9.1CVSS7.7AI score0.00834EPSS
Exploits0
Circl
Circl
added 2024/02/26 5:42 p.m.8 views

CVE-2024-1735

creationtimestamp| type| source ---|---|--- 2024-02-26 17:42:25+00:00| seen| https://t.me/ctinow/193547 2024-03-14 08:52:01+00:00| seen| https://t.me/ctinow/207545 2025-03-29 00:40:14+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lli3r2o5yo2p...

9.1CVSS8.6AI score0.00834EPSS
Exploits0References3
NVD
NVD
added 2024/02/26 4:27 p.m.18 views

CVE-2024-1735

A vulnerability has been identified in armeria-saml versions less than 1.27.2, allowing the use of malicious SAML messages to bypass authentication. All users who rely on armeria-saml older than version 1.27.2 must upgrade to 1.27.2 or later...

9.1CVSS9.2AI score0.00834EPSS
Exploits0References1
CVE
CVE
added 2024/02/26 7:25 a.m.116 views

CVE-2024-1735

CVE-2024-1735 affects armeria-saml prior to 1.27.2, where the SAML message handling allows bypass of authentication due to improper validation of unsigned messages. Impact: authentication bypass when processing specially crafted or unsigned SAML messages. The issue has been fixed in Armeria on ve...

9.1CVSS9.2AI score0.00834EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/02/26 7:25 a.m.20 views

CVE-2024-1735

A vulnerability has been identified in armeria-saml versions less than 1.27.2, allowing the use of malicious SAML messages to bypass authentication. All users who rely on armeria-saml older than version 1.27.2 must upgrade to 1.27.2 or later...

9.1CVSS9.4AI score0.00834EPSS
Exploits0References1
Rows per page
Query Builder