Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/23 8:52 a.m.9 views

CVE-2024-41949

biscuit-rust is the Rust implementation of Biscuit, an authentication and authorization token for microservices architectures. Third-party blocks can be generated without transferring the whole token to the third-party authority. Instead, a ThirdPartyBlock request can be sent, providing only the...

6.4CVSS7AI score0.00237EPSS
Exploits0References1
circl
circl
added 2024/08/02 12:38 a.m.6 views

CVE-2024-41949

creationtimestamp| type| source ---|---|--- 2024-08-02 00:38:01+00:00| seen| https://t.me/cvedetector/2292...

6.4CVSS4.8AI score0.00237EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/08/01 10:3 p.m.13 views

CVE-2024-41949 biscuit-rust vulnerable to public key confusion in third party block

biscuit-rust is the Rust implementation of Biscuit, an authentication and authorization token for microservices architectures. Third-party blocks can be generated without transferring the whole token to the third-party authority. Instead, a ThirdPartyBlock request can be sent, providing only the...

3CVSS7AI score0.00237EPSS
Exploits0References1
cvelist
cvelist
added 2024/08/01 10:3 p.m.58 views

CVE-2024-41949 biscuit-rust vulnerable to public key confusion in third party block

biscuit-rust is the Rust implementation of Biscuit, an authentication and authorization token for microservices architectures. Third-party blocks can be generated without transferring the whole token to the third-party authority. Instead, a ThirdPartyBlock request can be sent, providing only the...

3CVSS0.00237EPSS
Exploits0References1
Rows per page
Query Builder