Lucene search
K

2078 matches found

Vulnrichment
Vulnrichment
added 2025/12/03 7:13 p.m.3 views

CVE-2025-66406 Improper Authorization Check for SSH Certificate Revocation

Step CA is an online certificate authority for secure, automated certificate management for DevOps. Prior to 0.29.0, there is an improper authorization check for SSH certificate revocation. This affects deployments configured with the SSHPOP provisioner. This vulnerability is fixed in 0.29.0...

5CVSS6.4AI score0.00133EPSS
Exploits0References1
CVE
CVE
added 2025/12/03 7:13 p.m.10 views

CVE-2025-66406

CVE-2025-66406 affects Step CA (github.com/smallstep/certificates). Before version 0.29.0, there is an improper authorization check for SSH certificate revocation, impacting deployments configured with the SSHPOP provisioner. The root cause is inadequate authorization on revocation requests; the ...

5CVSS6.4AI score0.00133EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/03 7:13 p.m.5 views

EUVD-2025-201014

Step CA is an online certificate authority for secure, automated certificate management for DevOps. Prior to 0.29.0, there is an improper authorization check for SSH certificate revocation. This affects deployments configured with the SSHPOP provisioner. This vulnerability is fixed in 0.29.0...

5CVSS6.3AI score0.00133EPSS
Exploits0References2
OSV
OSV
added 2025/12/03 7:13 p.m.5 views

CVE-2025-66406 Improper Authorization Check for SSH Certificate Revocation

Step CA is an online certificate authority for secure, automated certificate management for DevOps. Prior to 0.29.0, there is an improper authorization check for SSH certificate revocation. This affects deployments configured with the SSHPOP provisioner. This vulnerability is fixed in 0.29.0...

5CVSS6.7AI score0.00133EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2025/12/03 4:27 p.m.7 views

step-ca Has Improper Authorization Check for SSH Certificate Revocation

Summary An authorized attacker can bypass authorization checks and revoke any SSH certificate issued by Step CA by using a valid revocation token. Details Step CA users can obtain SSH certificates from a few provisioners. The SSHPOP provisioner allows revocation of the SSH certificate preventing...

5CVSS6.4AI score0.00133EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/12/03 4:27 p.m.5 views

GHSA-J7C9-79X7-8HPR step-ca Has Improper Authorization Check for SSH Certificate Revocation

Summary An authorized attacker can bypass authorization checks and revoke any SSH certificate issued by Step CA by using a valid revocation token. Details Step CA users can obtain SSH certificates from a few provisioners. The SSHPOP provisioner allows revocation of the SSH certificate preventing...

5CVSS6.3AI score0.00133EPSS
Exploits0References3
Fedora
Fedora
added 2025/12/03 1:40 a.m.7 views

[SECURITY] Fedora 41 Update: openbao-2.4.4-1.fc41

Openbao secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Openbao handles leasing, key revocation, key rolling, and auditing. Through a unified API, us ers can access an encrypted Key/Value store and network...

7.5CVSS7AI score0.00626EPSS
Exploits0
Fedora
Fedora
added 2025/12/03 1:12 a.m.7 views

[SECURITY] Fedora 42 Update: openbao-2.4.4-1.fc42

Openbao secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Openbao handles leasing, key revocation, key rolling, and auditing. Through a unified API, us ers can access an encrypted Key/Value store and network...

7.5CVSS7AI score0.00419EPSS
Exploits0
Fedora
Fedora
added 2025/12/03 12:59 a.m.8 views

[SECURITY] Fedora 43 Update: openbao-2.4.4-1.fc43

Openbao secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Openbao handles leasing, key revocation, key rolling, and auditing. Through a unified API, us ers can access an encrypted Key/Value store and network...

7.5CVSS7AI score0.00626EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/03 12:0 a.m.5 views

PT-2025-48988

Name of the Vulnerable Software and Affected Versions Step CA versions prior to 0.29.0 Description Step CA is an online certificate authority for secure, automated certificate management for DevOps. A flaw exists in the authorization check for SSH certificate revocation, specifically impacting...

5CVSS6.4AI score0.00133EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/03 12:0 a.m.6 views

Smallstep step-ca 安全漏洞

Smallstep step-ca is an online certificate authority for secure, automated certificate management for DevOps from Smallstep USA. A security vulnerability exists in Smallstep step-ca versions prior to 0.29.0 that stems from improper SSH certificate revocation authorization checking, which could le...

5CVSS6.3AI score0.00133EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/01 1:18 p.m.6 views

CVE-2025-66289

OrangeHRM is a comprehensive human resource management HRM system. From version 5.0 to 5.7, the application does not invalidate existing sessions when a user is disabled or when a password change occurs, allowing active session cookies to remain valid indefinitely. As a result, a disabled user, o...

8.8CVSS7.1AI score0.00241EPSS
Exploits0References1
NVD
NVD
added 2025/11/29 4:15 a.m.5 views

CVE-2025-66289

OrangeHRM is a comprehensive human resource management HRM system. From version 5.0 to 5.7, the application does not invalidate existing sessions when a user is disabled or when a password change occurs, allowing active session cookies to remain valid indefinitely. As a result, a disabled user, o...

8.8CVSS0.00241EPSS
Exploits0References1
OSV
OSV
added 2025/11/26 10:11 p.m.1 views

GHSA-WMJR-V86C-M9JJ Better Auth's multi-session sign-out hook allows forged cookies to revoke arbitrary sessions

Summary A vulnerability was identified in the multi-session plugin for Better Auth, specifically in the /sign-out after-hook. The hook trusts raw multi-session cookies and forwards the extracted values directly to internalAdapter.deleteSessions without verifying the cookie signature. Because cook...

2CVSS6.9AI score
Exploits0References4
OSV
OSV
added 2025/11/21 3:59 p.m.4 views

JLSEC-2025-208 An issue was discovered in Arm Mbed TLS before 2.24.0

An issue was discovered in Arm Mbed TLS before 2.24.0. It incorrectly uses a revocationDate check when deciding whether to honor certificate revocation via a CRL. In some situations, an attacker can exploit this by changing the local clock...

5.3CVSS5.2AI score0.00907EPSS
Exploits1References7
OSV
OSV
added 2025/11/21 3:59 p.m.4 views

JLSEC-2025-209 An issue was discovered in Arm Mbed TLS before 2.24.0

An issue was discovered in Arm Mbed TLS before 2.24.0. mbedtlsx509crlparseder has a buffer over-read of one byte...

7.5CVSS7.6AI score0.01687EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/11/18 7:15 p.m.1 views

CVE-2025-54771

A use-after-free vulnerability has been identified in the GNU GRUB Grand Unified Bootloader. The flaw occurs because the file-closing process incorrectly retains a memory pointer, leaving an invalid reference to a file system structure. An attacker could exploit this vulnerability to cause grub t...

4.9CVSS5.8AI score0.00127EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/11/18 7:15 p.m.3 views

CVE-2025-61664

A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normalexit command is not properly unregistered when its related module is unloaded. An attacker can exploit this condition by invoking the command after...

4.9CVSS5.7AI score0.00121EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/11/18 7:15 p.m.3 views

CVE-2025-61661

A vulnerability has been identified in the GRUB Grand Unified Bootloader component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can connect a malicious...

4.8CVSS5.7AI score0.00168EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/11/18 7:15 p.m.3 views

CVE-2025-61662

A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where the gettext command remains registered in memory after its module is unloaded. An attacker can exploit this condition by invoking the orphaned command, causing the applicati...

7.8CVSS5.8AI score0.0019EPSS
Exploits0References3
Rows per page
Query Builder