Lucene search

K

Onedev Security Vulnerabilities - 2023

cve
cve

CVE-2023-24828

Onedev is a self-hosted Git Server with CI/CD and Kanban. In versions prior to 7.9.12 the algorithm used to generate access token and password reset keys was not cryptographically secure. Existing normal users (or everyone if it allows self-registration) may exploit this to elevate privilege to obt...

8.8CVSS

8.5AI Score

0.001EPSS

2023-02-08 12:15 AM
42