25 matches found
OAuth2 Proxy's Health Check User-Agent Matching Bypasses Authentication in auth_request Mode
Impact A configuration-dependent authentication bypass exists in OAuth2 Proxy. Deployments are affected when all of the following are true: - OAuth2 Proxy is used with an authrequest-style integration for example, nginx authrequest - --ping-user-agent is set or --gcp-healthchecks is enabled In...
EUVD-2023-12494
Malicious code in bioql PyPI...
Malicious code in rxnt-healthchecks-nestjs (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91466f0176011b114548780f79ecab9da3b995e89243c07548ea8be6e4a7b0d9 Any computer that has this package installed or running should be considered fully compromised. All...
MAL-2025-47346 Malicious code in rxnt-healthchecks-nestjs (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91466f0176011b114548780f79ecab9da3b995e89243c07548ea8be6e4a7b0d9 Any computer that has this package installed or running should be considered fully compromised. All...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...
CVE-2023-0440
Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...
Dapr API token authentication bypass in HTTP endpoints
Summary A vulnerability has been found in Dapr that allows bypassing API token authentication, which is used by the Dapr sidecar to authenticate calls coming from the application, with a well-crafted HTTP request. Users who leverage API token authentication are encouraged to upgrade Dapr to 1.10....
CVE-2023-0440
Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...
Buffer overflow
Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...
PT-2023-16271 · Unknown · Healthchecks
Name of the Vulnerable Software and Affected Versions: healthchecks/healthchecks versions prior to 2.6 Description: The issue concerns an observable discrepancy in the healthchecks/healthchecks GitHub repository, which can lead to the exposure of sensitive information to unauthorized actors...
CVE-2023-0440 Observable Discrepancy in healthchecks/healthchecks
Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...
CVE-2023-0440 Observable Discrepancy in healthchecks/healthchecks
Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...
CVE-2023-0440
The CVE-2023-0440 entry concerns healthchecks/healthchecks before version 2.6. The issue is described as an observable discrepancy that can expose sensitive information to unauthorized actors. Affected software is Healthchecks (healthchecks/healthchecks); versions prior to 2.6 are vulnerable. Mit...
Healthchecks 信息泄露漏洞
SIA Monkey See Monkey Do Healthchecks is a cron job monitoring service from SIA Monkey See Monkey Do. An information disclosure vulnerability exists in versions prior to Healthchecks v2.6, which stems from the exposure of sensitive information to unauthorized participants...
CVE-2023-0440 Observable Discrepancy in healthchecks/healthchecks
Observable Discrepancy in GitHub repository healthchecks/healthchecks prior to v2.6...
ALBA-2020:2457 container-tools:2.0 bug fix update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: podman: Please backport correction patch for the native container healthchecks BZ1836978...
container-tools:2.0 bug fix update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: podman: Please backport correction patch for the native container healthchecks BZ1836978...
container-tools:rhel8 bug fix update
An update is available for udica, runc, toolbox, python-podman-api, slirp4netns, buildah, criu. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The container-too...
container-tools:rhel8 bug fix update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: podman: Please backport correction patch for the native container healthchecks BZ1834346...
ALBA-2020:2456 container-tools:rhel8 bug fix update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: podman: Please backport correction patch for the native container healthchecks BZ1834346...