13 matches found
EUVD-2012-2064
Malware in sbrugna...
CVE-2022-44622
In JetBrains TeamCity version between 2021.2 and 2022.10 access permissions for secure token health items were excessive...
GHSA-24MC-GC52-47JV ICG.AspNetCore.Utilities.CloudStorage's Secure Token Durations Different Than Expected
Impact Users of this library that set a duration for a SAS Uri with a value other than 1 hour may have generated a URL with a duration that is longer, or shorter than desired. Users not implemented SAS Uri's are unaffected. Patches This issue was resolved in version 8.0.0 of the library, all user...
CVE-2024-50353 ICG.AspNetCore.Utilities.CloudStorage's Secure Token Durations Different Than Expected
ICG.AspNetCore.Utilities.CloudStorage is a collection of cloud storage utilities to assist with the management of files for cloud upload. Users of this library that set a duration for a SAS Uri with a value other than 1 hour may have generated a URL with a duration that is longer, or shorter than...
CVE-2024-50353 ICG.AspNetCore.Utilities.CloudStorage's Secure Token Durations Different Than Expected
ICG.AspNetCore.Utilities.CloudStorage is a collection of cloud storage utilities to assist with the management of files for cloud upload. Users of this library that set a duration for a SAS Uri with a value other than 1 hour may have generated a URL with a duration that is longer, or shorter than...
Authentication Bypass
SilverStripe is vulnerable to Authentication Bypass. The vulnerability is caused by providing an empty token parameter with secure token parameters like isDev or flush, allowing bypass of normal authentication mechanisms...
CVE-2022-44622
In JetBrains TeamCity version between 2021.2 and 2022.10 access permissions for secure token health items were excessive...
CVE-2022-44622
JetBrains TeamCity up to version 2022.10 is affected by an issue where access permissions for secure token health items are excessively granted. Affected products: JetBrains TeamCity (versions 2021.2 through 2022.10). Root cause and exact exploit path are not detailed in the provided documents, b...
CVE-2022-44622
In JetBrains TeamCity version between 2021.2 and 2022.10 access permissions for secure token health items were excessive...
PT-2022-27266 · Jetbrains · Teamcity
Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions 2021.2 through 2022.10 Description: The issue concerns excessive access permissions for secure token health items. Recommendations: For versions 2021.2 through 2022.10, update to a version that addresses the...
CVE-2022-44622
In JetBrains TeamCity version between 2021.2 and 2022.10 access permissions for secure token health items were excessive...
CVE-2018-14859
Incorrect access control in the password reset component in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier allows authenticated users to reset the password of other users by being the first party to use the secure token...
CVE-2018-14859
Incorrect access control in the password reset component in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier allows authenticated users to reset the password of other users by being the first party to use the secure token...