Lucene search
+L

4 matches found

Positive Technologies
Positive Technologies
added 2024/04/17 12:0 a.m.4 views

PT-2024-11925 · Red Hat · Keycloak

Name of the Vulnerable Software and Affected Versions: Keycloak affected versions not specified Description: A flaw was found in Keycloak due to improperly enforcing token types when validating signatures locally. This could allow an authenticated attacker to exchange a logout token for an access...

3.4CVSS6.5AI score0.00299EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2023/02/15 3:43 a.m.3 views

SUSE CVE-2021-29157

Dovecot before 2.3.15 allows ../ Path Traversal. An attacker with access to the local filesystem can trick OAuth2 authentication into using an HS256 validation key from an attacker-controlled location. This occurs during use of local JWT validation with the posix fs driver...

6.7CVSS6.8AI score0.0047EPSS
Exploits0References14
ATTACKERKB
ATTACKERKB
added 2021/06/28 12:15 p.m.3 views

CVE-2021-29157

Dovecot before 2.3.15 allows ../ Path Traversal. An attacker with access to the local filesystem can trick OAuth2 authentication into using an HS256 validation key from an attacker-controlled location. This occurs during use of local JWT validation with the posix fs driver...

7.5CVSS7.1AI score0.0047EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2011/05/31 2:3 p.m.88 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

7.8CVSS6.7AI score0.03477EPSS
Exploits4References23
Rows per page
Query Builder