Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:24704
HistoryApr 10, 2020 - 1:02 a.m.

Authentication Bypass

2020-04-1001:02:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8

0.0004 Low

EPSS

Percentile

5.1%

JSON

cumin is vulnerable to authentication bypass. A flaw was discovered in Cumin where it would log broker authentication credentials to the Cumin log file. A local user exploiting this flaw could connect to the broker outside of Cumin’s control and perform certain operations such as scheduling jobs, setting attributes on jobs, as well as holding, releasing or removing jobs. The user could also use this to, depending on the defined ACLs of the broker, manipulate message queues and other privileged operations.

Related

redhat 2
nessus 2
nvd 1
cve 1
ubuntucve 1
prion 1
cvelist 1
redhat
redhat
(RHSA-2011:1250) Moderate: Red Hat Enterprise MRG Grid 2.0 security, bug fix and enhancement update
2011-09-07 00:00:00
(RHSA-2011:1249) Moderate: Red Hat Enterprise MRG Grid 2.0 security, bug fix and enhancement update
2011-09-07 00:00:00
nessus
nessus
RHEL 5 : Red Hat Enterprise MRG Grid 2.0 (RHSA-2011:1249)
2014-07-22 00:00:00
RHEL 6 : Red Hat Enterprise MRG Grid 2.0 (RHSA-2011:1250)
2014-07-22 00:00:00
nvd
nvd
CVE-2011-2925
2011-09-20 05:55:02
cve
cve
CVE-2011-2925
2011-09-20 05:55:02
ubuntucve
ubuntucve
CVE-2011-2925
2011-09-20 00:00:00
prion
prion
Authentication flaw
2011-09-20 05:55:00
cvelist
cvelist
CVE-2011-2925
2011-09-19 15:00:00

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for VERACODE:24704
redhat2nessus2nvd1cve1ubuntucve1prion1cvelist1