2 matches found
Erlang/OTP 安全漏洞
Erlang/OTP is an open-source JavaScript library for handling exceptions. This library can catch exceptions caused by node.js’s built-in APIs. Erlang/OTP has a security vulnerability, which stems from improper trust in the certificate chain within the publickey module. This allows non-CA...
Authentication Bypass
github.com/hashicorp/vault is vulnerable to Authentication Bypass. The vulnerability is due to improper certificate validation due to accepting non-CA certificates as trusted, allowing attackers to impersonate users with crafted certificates...