Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:12 a.m.9 views

CVE-2024-31995

@digitalbazaar/zcap provides JavaScript reference implementation for Authorization Capabilities. Prior to version 9.0.1, when invoking a capability with a chain depth of 2, i.e., it is delegated directly from the root capability, the expires property is not properly checked against the current da...

4.3CVSS6.7AI score0.00441EPSS
Exploits0References1
NVD
NVD
added 2024/04/10 10:15 p.m.28 views

CVE-2024-31995

@digitalbazaar/zcap provides JavaScript reference implementation for Authorization Capabilities. Prior to version 9.0.1, when invoking a capability with a chain depth of 2, i.e., it is delegated directly from the root capability, the expires property is not properly checked against the current da...

4.3CVSS4.5AI score0.00441EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/04/10 9:57 p.m.15 views

CVE-2024-31995 zcap has incomplete expiration checks in capability chains.

@digitalbazaar/zcap provides JavaScript reference implementation for Authorization Capabilities. Prior to version 9.0.1, when invoking a capability with a chain depth of 2, i.e., it is delegated directly from the root capability, the expires property is not properly checked against the current da...

4.3CVSS6.7AI score0.00441EPSS
Exploits0References4
OSV
OSV
added 2024/04/10 9:57 p.m.19 views

CVE-2024-31995 zcap has incomplete expiration checks in capability chains.

@digitalbazaar/zcap provides JavaScript reference implementation for Authorization Capabilities. Prior to version 9.0.1, when invoking a capability with a chain depth of 2, i.e., it is delegated directly from the root capability, the expires property is not properly checked against the current da...

4.3CVSS4.8AI score0.00441EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/04/10 9:57 p.m.34 views

CVE-2024-31995 zcap has incomplete expiration checks in capability chains.

@digitalbazaar/zcap provides JavaScript reference implementation for Authorization Capabilities. Prior to version 9.0.1, when invoking a capability with a chain depth of 2, i.e., it is delegated directly from the root capability, the expires property is not properly checked against the current da...

4.3CVSS4.8AI score0.00441EPSS
Exploits0References4
Rows per page
Query Builder