9 matches found
EUVD-2024-2899
Malicious code in bioql PyPI...
CVE-2024-50353
ICG.AspNetCore.Utilities.CloudStorage is a collection of cloud storage utilities to assist with the management of files for cloud upload. Users of this library that set a duration for a SAS Uri with a value other than 1 hour may have generated a URL with a duration that is longer, or shorter than...
Improper Access Control
ICG.AspNetCore.Utilities.CloudStorage is vulnerable to Improper Access Control. The vulnerability is due to incorrect handling of the SAS Uri duration, which may result in a URL with an incorrect expiration time. It can allow an attacker to gain unauthorized access if the duration is too long, or...
ICG.AspNetCore.Utilities.CloudStorage's Secure Token Durations Different Than Expected
Impact Users of this library that set a duration for a SAS Uri with a value other than 1 hour may have generated a URL with a duration that is longer, or shorter than desired. Users not implemented SAS Uri's are unaffected. Patches This issue was resolved in version 8.0.0 of the library, all user...
GHSA-24MC-GC52-47JV ICG.AspNetCore.Utilities.CloudStorage's Secure Token Durations Different Than Expected
Impact Users of this library that set a duration for a SAS Uri with a value other than 1 hour may have generated a URL with a duration that is longer, or shorter than desired. Users not implemented SAS Uri's are unaffected. Patches This issue was resolved in version 8.0.0 of the library, all user...
CVE-2024-50353 ICG.AspNetCore.Utilities.CloudStorage's Secure Token Durations Different Than Expected
ICG.AspNetCore.Utilities.CloudStorage is a collection of cloud storage utilities to assist with the management of files for cloud upload. Users of this library that set a duration for a SAS Uri with a value other than 1 hour may have generated a URL with a duration that is longer, or shorter than...
CVE-2024-50353
CVE-2024-50353 affects the ICG.AspNetCore.Utilities.CloudStorage library. Vulnerability: when a SAS URI duration is set to a value other than 1 hour, the generated URL may have a duration longer or shorter than intended; users not implementing SAS URIs are unaffected. Root cause: incorrect handli...
CVE-2024-50353 ICG.AspNetCore.Utilities.CloudStorage's Secure Token Durations Different Than Expected
ICG.AspNetCore.Utilities.CloudStorage is a collection of cloud storage utilities to assist with the management of files for cloud upload. Users of this library that set a duration for a SAS Uri with a value other than 1 hour may have generated a URL with a duration that is longer, or shorter than...
CVE-2024-50353 ICG.AspNetCore.Utilities.CloudStorage's Secure Token Durations Different Than Expected
ICG.AspNetCore.Utilities.CloudStorage is a collection of cloud storage utilities to assist with the management of files for cloud upload. Users of this library that set a duration for a SAS Uri with a value other than 1 hour may have generated a URL with a duration that is longer, or shorter than...