Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/02/25 2:19 a.m.2 views

CVE-2026-27610 Parse Dashboard Has a Cache Key Collision that Leaks Master Key to Read-Only Sessions

Parse Dashboard is a standalone dashboard for managing Parse Server apps. In versions 7.3.0-alpha.42 through 9.0.0-alpha.7, the ConfigKeyCache uses the same cache key for both master key and read-only master key when resolving function-typed keys. Under specific timing conditions, a read-only use...

7CVSS5.9AI score0.00337EPSS
Exploits0References3
OSV
OSV
added 2026/02/25 2:19 a.m.7 views

CVE-2026-27610 Parse Dashboard Has a Cache Key Collision that Leaks Master Key to Read-Only Sessions

Parse Dashboard is a standalone dashboard for managing Parse Server apps. In versions 7.3.0-alpha.42 through 9.0.0-alpha.7, the ConfigKeyCache uses the same cache key for both master key and read-only master key when resolving function-typed keys. Under specific timing conditions, a read-only use...

7CVSS5.5AI score0.00337EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 3:1 a.m.10 views

CVE-2023-1809

The Download Manager WordPress plugin before 6.3.0 leaks master key information without the need for a password, allowing attackers to download arbitrary password-protected package files...

7.5CVSS6.7AI score0.00738EPSS
Exploits2References1
OSV
OSV
added 2016/03/02 11:59 a.m.1 views

DEBIAN-CVE-2016-0704

An oracle protection mechanism in the getclientmasterkey function in s2srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a overwrites incorrect MASTER-KEY bytes during use of export cipher suites, which makes it easier fo...

5.9CVSS9.3AI score0.06903EPSS
Exploits0References1
Rows per page
Query Builder