Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-26636

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.01147EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:46 a.m.16 views

CVE-2023-22495

Izanami is a shared configuration service well-suited for micro-service architecture implementation. Attackers can bypass the authentication in this application when deployed using the official Docker image. Because a hard coded secret is used to sign the authentication token JWT, an attacker cou...

9.8CVSS7AI score0.01147EPSS
Exploits1References1
NVD
NVD
added 2023/01/14 1:15 a.m.24 views

CVE-2023-22495

Izanami is a shared configuration service well-suited for micro-service architecture implementation. Attackers can bypass the authentication in this application when deployed using the official Docker image. Because a hard coded secret is used to sign the authentication token JWT, an attacker cou...

9.8CVSS9.6AI score0.01147EPSS
Exploits1References2
Prion
Prion
added 2023/01/14 1:15 a.m.18 views

Authentication flaw

Izanami is a shared configuration service well-suited for micro-service architecture implementation. Attackers can bypass the authentication in this application when deployed using the official Docker image. Because a hard coded secret is used to sign the authentication token JWT, an attacker cou...

7.5CVSS9.4AI score0.01147EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2023/01/14 12:47 a.m.25 views

CVE-2023-22495 Izanami is vulnerable to Authorization Bypass

Izanami is a shared configuration service well-suited for micro-service architecture implementation. Attackers can bypass the authentication in this application when deployed using the official Docker image. Because a hard coded secret is used to sign the authentication token JWT, an attacker cou...

9.8CVSS9.3AI score0.01147EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/01/14 12:47 a.m.9 views

CVE-2023-22495 Izanami is vulnerable to Authorization Bypass

Izanami is a shared configuration service well-suited for micro-service architecture implementation. Attackers can bypass the authentication in this application when deployed using the official Docker image. Because a hard coded secret is used to sign the authentication token JWT, an attacker cou...

9.8CVSS9.8AI score0.01147EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/01/14 12:47 a.m.35 views

CVE-2023-22495 Izanami is vulnerable to Authorization Bypass

Izanami is a shared configuration service well-suited for micro-service architecture implementation. Attackers can bypass the authentication in this application when deployed using the official Docker image. Because a hard coded secret is used to sign the authentication token JWT, an attacker cou...

9.8CVSS9.7AI score0.01147EPSS
Exploits1References2
CVE
CVE
added 2023/01/14 12:47 a.m.69 views

CVE-2023-22495

CVE-2023-22495 affects Izanami, a shared configuration service for microservices. In versions prior to 1.11.0, an attacker could bypass authentication when running the official Docker image because a hard-coded secret signs the JWT token, enabling compromise of another Izanami instance. The vulne...

9.8CVSS9.6AI score0.01147EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2023/01/14 12:0 a.m.2 views

Izanami 信任管理问题漏洞

Izanami is a shared configuration, feature flipping, and A/B testing server that is ideally suited for microservices architecture implementations. A security vulnerability exists in Izanami versions prior to 1.11.0 that stems from an attacker being able to bypass authentication in this applicatio...

9.8CVSS8.3AI score0.01147EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/01/14 12:0 a.m.7 views

PT-2023-18546 · Izanami · Izanami

Name of the Vulnerable Software and Affected Versions: Izanami versions prior to 1.11.0 Description: The issue allows attackers to bypass authentication in the application when deployed using the official Docker image. This is due to a hard-coded secret used to sign the authentication token JWT,...

9.8CVSS9.4AI score0.01147EPSS
Exploits1References4
Rows per page
Query Builder