Lucene search
K

4 matches found

NVD
NVD
added 2018/03/15 1:29 a.m.28 views

CVE-2018-8715

The Embedthis HTTP library, and Appweb versions before 7.0.3, have a logic flaw related to the authCondition function in http/httpLib.c. With a forged HTTP request, it is possible to bypass authentication for the form and digest login types...

8.1CVSS8.2AI score0.19854EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2018/03/15 1:29 a.m.3 views

CVE-2018-8715

The Embedthis HTTP library, and Appweb versions before 7.0.3, have a logic flaw related to the authCondition function in http/httpLib.c. With a forged HTTP request, it is possible to bypass authentication for the form and digest login types...

8.1CVSS5.6AI score0.19854EPSS
Exploits2References5
seebug.org
seebug.org
added 2018/03/15 12:0 a.m.980 views

AppWeb Authentication Bypass (Digest, Basic and Forms)(CVE-2018-8715)

Vulnerability Summary A critical vulnerability in the EmbedThis HTTP library, and Appweb versions 5.5.x, 6.x, and 7.x including the latest version present in the git repository. In detail, due to a logic flaw, with a forged HTTP request it is possible to bypass the authentication for form and...

6.8CVSS8.3AI score0.19854EPSS
Exploits2
Cvelist
Cvelist
added 2018/03/14 8:0 p.m.33 views

CVE-2018-8715

The Embedthis HTTP library, and Appweb versions before 7.0.3, have a logic flaw related to the authCondition function in http/httpLib.c. With a forged HTTP request, it is possible to bypass authentication for the form and digest login types...

8.2AI score0.19854EPSS
Exploits2References3
Rows per page
Query Builder