Lucene search
Chat Server Security Vulnerabilities - February
cve
Chat Server is the chat server for Vartalap, an open-source messaging application. Versions 2.3.2 until 2.6.0 suffer from a bug in validating the access token, resulting in authentication bypass. The function this.authProvider.verifyAccessKey is an async function, as the code is not using await to ...
9.8CVSS
9.6AI Score
0.002EPSS
2022-05-31 11:15 PM
61
3