2 matches found
GHSA-VRXP-MG9F-HWF3 Improperly Implemented path matching for in-toto-golang
Impact Authenticated attackers posing as functionaries i.e., within a trusted set of users for a layout are able to create attestations that may bypass DISALLOW rules in the same layout. An attacker with access to trusted private keys, may issue an attestation that contains a disallowed artifact ...
Nmap NSE net: imap-capabilities
Retrieves IMAP email server capabilities. IMAP4rev1 capabilities are defined in RFC 3501. The CAPABILITY command allows a client to ask a server what commands it supports and possibly any site-specific policy. OpenVAS Vulnerability Test $Id: gbnmapimapcapabilitiesnet.nasl 5505 2017-03-07 10:00:18...