5 matches found
PT-2025-38246
Name of the Vulnerable Software and Affected Versions: The Bastion affected versions not specified Description: The Bastion provides authentication, authorization, traceability, and auditability for SSH accesses. Session-recording ttyrec files are handled by the provided osh-encrypt-rsync script,...
CVE-2023-45140
CVE-2023-45140 describes a bypass in The Bastion where SCP/SFTP plugins do not honor group-based JIT MFA, allowing a group access with MFA enforced to establish a connection without an extra factor. This affects per-group-based JIT MFA; Immediate MFA, per-plugin JIT MFA, and per-account JIT MFA a...
CVE-2023-45140 Group-based JIT MFA bypass on scp and sftp in The Bastion
The Bastion provides authentication, authorization, traceability and auditability for SSH accesses. SCP and SFTP plugins don't honor group-based JIT MFA. Establishing a SCP/SFTP connection through The Bastion via a group access where MFA is enforced does not ask for additional factor. This abnorm...
CVE-2023-45140 Group-based JIT MFA bypass on scp and sftp in The Bastion
The Bastion provides authentication, authorization, traceability and auditability for SSH accesses. SCP and SFTP plugins don't honor group-based JIT MFA. Establishing a SCP/SFTP connection through The Bastion via a group access where MFA is enforced does not ask for additional factor. This abnorm...
PT-2023-29435 · Unknown · The Bastion
Name of the Vulnerable Software and Affected Versions: The Bastion versions prior to 3.14.15 Description: The Bastion provides authentication, authorization, traceability, and auditability for SSH accesses. However, SCP and SFTP plugins do not honor group-based Just-In-Time JIT Multi-Factor...