2 matches found
PT-2023-32482
Name of the Vulnerable Software and Affected Versions prefect versions prior to 2.16.5 Description The issue allows an attacker to steal secrets and potentially gain remote code execution via Cross-Site Request Forgery CSRF using the Prefect API. This can be exploited in self-hosted, open source...
PT-2020-2637
Name of the Vulnerable Software and Affected Versions Arm Mbed TLS versions prior to 2.16.5 Description The issue allows attackers to obtain sensitive information, specifically an RSA private key, by measuring cache usage during an import. This is related to the implementation of TLS and SSL...