2 matches found
CVE-2015-0842
The vulnerability CVE-2015-0842 affects yubiserver prior to version 0.6. The issue is a SQL injection in the server that can lead to an authentication bypass. The available documents confirm the affected software/component and the underlying cause (SQL injection) and indicate a potentially severe...
CVE-2015-0843
CVE-2015-0843 affects yubiserver, with versions before 0.6 vulnerable to buffer overflows caused by misuse of sprintf. The connected sources consistently describe the issue as a buffer overflow risk in yubiserver before 0.6. No exploitation details, affected versions beyond the stated pre-0.6, or...