Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:27620
HistoryOct 19, 2020 - 7:36 a.m.

Information Disclosure

2020-10-1907:36:59
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8

0.001 Low

EPSS

Percentile

35.9%

cas-server-support-otp-mfa is vulnerable to information disclosure. The vulnerability exists as the user’s secret key is sent as a GET parameter in an img tag when Google Authenticator is used.

0.001 Low

EPSS

Percentile

35.9%

Related for VERACODE:27620