Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-2298

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01028EPSS
Exploits0References5
Snyk
Snyk
added 2024/02/20 2:13 p.m.3 views

Authentication Bypass

Amendment This was deemed not a vulnerability. Overview hawk is a library for the HTTP Hawk Authentication Scheme. Affected versions of this package are vulnerable to Authentication Bypass. The incoming client supplied hash of the payload is trusted by the server and not verified before the...

9.3CVSS5.6AI score
Exploits0References2
OSV
OSV
added 2022/05/05 11:15 p.m.1 views

DEBIAN-CVE-2022-29167

Hawk is an HTTP authentication scheme providing mechanisms for making authenticated HTTP requests with partial cryptographic verification of the request and response, covering the HTTP method, request URI, host, and optionally the request payload. Hawk used a regular expression to parse Host HTTP...

7.5CVSS7.3AI score0.01028EPSS
Exploits0References1
OSV
OSV
added 2022/05/05 11:15 p.m.2 views

UBUNTU-CVE-2022-29167

Hawk is an HTTP authentication scheme providing mechanisms for making authenticated HTTP requests with partial cryptographic verification of the request and response, covering the HTTP method, request URI, host, and optionally the request payload. Hawk used a regular expression to parse Host HTTP...

7.5CVSS7.1AI score0.01028EPSS
Exploits0References6
CNVD
CNVD
added 2017/03/02 12:0 a.m.3 views

Apache CXF Timing Attack Information Disclosure Vulnerability

Apache CXF is the United States Apache Apache Software Foundation, an open source Web services framework. A timing attack vulnerability exists in the Apache CXF OAuth2 Hawk and JOSE MAC authentication code, which allows remote attackers to submit a special request to obtain sensitive information...

7.5CVSS8.3AI score0.06315EPSS
Exploits0References1
Rows per page
Query Builder