Lucene search
K

25 matches found

Github Security Blog
Github Security Blog
added 2026/04/14 10:31 p.m.12 views

OAuth2 Proxy's Health Check User-Agent Matching Bypasses Authentication in auth_request Mode

Impact A configuration-dependent authentication bypass exists in OAuth2 Proxy. Deployments are affected when all of the following are true: - OAuth2 Proxy is used with an authrequest-style integration for example, nginx authrequest - --ping-user-agent is set or --gcp-healthchecks is enabled In...

9.1CVSS5.9AI score0.00475EPSS
Exploits0References4Affected Software2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-12494

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.0056EPSS
Exploits1References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/16 1:22 a.m.4 views

Malicious code in rxnt-healthchecks-nestjs (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91466f0176011b114548780f79ecab9da3b995e89243c07548ea8be6e4a7b0d9 Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References11
OSV
OSV
added 2025/09/16 1:22 a.m.2 views

MAL-2025-47346 Malicious code in rxnt-healthchecks-nestjs (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91466f0176011b114548780f79ecab9da3b995e89243c07548ea8be6e4a7b0d9 Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References10
Snyk
Snyk
added 2025/09/15 7:39 a.m.3 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...

9.8CVSS7AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 2:55 a.m.4 views

CVE-2023-0440

Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...

5.3CVSS5.4AI score0.0056EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2023/07/21 8:17 p.m.27 views

Dapr API token authentication bypass in HTTP endpoints

Summary A vulnerability has been found in Dapr that allows bypassing API token authentication, which is used by the Dapr sidecar to authenticate calls coming from the application, with a well-crafted HTTP request. Users who leverage API token authentication are encouraged to upgrade Dapr to 1.10....

7.5CVSS7AI score0.01129EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2023/01/23 2:15 p.m.9 views

CVE-2023-0440

Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...

5.3CVSS5.3AI score0.0056EPSS
Exploits1References2
Prion
Prion
added 2023/01/23 2:15 p.m.13 views

Buffer overflow

Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...

5CVSS5.3AI score0.0056EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/01/23 12:0 a.m.3 views

PT-2023-16271 · Unknown · Healthchecks

Name of the Vulnerable Software and Affected Versions: healthchecks/healthchecks versions prior to 2.6 Description: The issue concerns an observable discrepancy in the healthchecks/healthchecks GitHub repository, which can lead to the exposure of sensitive information to unauthorized actors...

5.3CVSS5.1AI score0.0056EPSS
Exploits1References6
Cvelist
Cvelist
added 2023/01/23 12:0 a.m.19 views

CVE-2023-0440 Observable Discrepancy in healthchecks/healthchecks

Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...

5.3CVSS5.6AI score0.0056EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/01/23 12:0 a.m.5 views

CVE-2023-0440 Observable Discrepancy in healthchecks/healthchecks

Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...

5.3CVSS5.6AI score0.0056EPSS
Exploits1References2
CVE
CVE
added 2023/01/23 12:0 a.m.45 views

CVE-2023-0440

The CVE-2023-0440 entry concerns healthchecks/healthchecks before version 2.6. The issue is described as an observable discrepancy that can expose sensitive information to unauthorized actors. Affected software is Healthchecks (healthchecks/healthchecks); versions prior to 2.6 are vulnerable. Mit...

5.3CVSS5.3AI score0.0056EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2023/01/23 12:0 a.m.4 views

Healthchecks 信息泄露漏洞

SIA Monkey See Monkey Do Healthchecks is a cron job monitoring service from SIA Monkey See Monkey Do. An information disclosure vulnerability exists in versions prior to Healthchecks v2.6, which stems from the exposure of sensitive information to unauthorized participants...

5.3CVSS5.6AI score0.0056EPSS
Exploits1References3
OSV
OSV
added 2023/01/23 12:0 a.m.9 views

CVE-2023-0440 Observable Discrepancy in healthchecks/healthchecks

Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...

5.3CVSS5.4AI score0.0056EPSS
Exploits1References4
OSV
OSV
added 2020/06/09 10:10 p.m.5 views

ALBA-2020:2457 container-tools:2.0 bug fix update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: podman: Please backport correction patch for the native container healthchecks BZ1836978...

7.3AI score
Exploits0References1
AlmaLinux
AlmaLinux
added 2020/06/09 10:10 p.m.15 views

container-tools:2.0 bug fix update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: podman: Please backport correction patch for the native container healthchecks BZ1836978...

1.9AI score
Exploits0References1
Rockylinux
Rockylinux
added 2020/06/09 10:7 p.m.9 views

container-tools:rhel8 bug fix update

An update is available for udica, runc, toolbox, python-podman-api, slirp4netns, buildah, criu. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The container-too...

0.5AI score
Exploits0
AlmaLinux
AlmaLinux
added 2020/06/09 10:7 p.m.16 views

container-tools:rhel8 bug fix update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: podman: Please backport correction patch for the native container healthchecks BZ1834346...

1.9AI score
Exploits0References1
OSV
OSV
added 2020/06/09 10:7 p.m.7 views

ALBA-2020:2456 container-tools:rhel8 bug fix update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: podman: Please backport correction patch for the native container healthchecks BZ1834346...

7.3AI score
Exploits0References1
Rows per page
Query Builder