Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:34017
HistoryFeb 07, 2022 - 3:47 a.m.

Spoofing Attack

2022-02-0703:47:00
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12

0.001 Low

EPSS

Percentile

27.0%

JSON

github.com/fleetdm/fleet is vulnerable to spoofing attack. The vulnerability exists due to an insecure authentication allowing an attacker to reuse the SAML response to log into the system.

Related

prion 1
osv 2
github 1
cve 1
cnvd 1
nvd 1
cvelist 1
prion
prion
Authentication flaw
2022-02-04 23:15:00
osv
osv
CVE-2022-23600
2022-02-04 23:15:15
Limited ability to spoof SAML authentication with missing audience verification in Fleet
2022-02-07 21:57:38
github
github
Limited ability to spoof SAML authentication with missing audience verification in Fleet
2022-02-07 21:57:38
cve
cve
CVE-2022-23600
2022-02-04 23:15:15
cnvd
cnvd
Fleet Licensing Issue Vulnerability (CNVD-2022-08935)
2022-02-09 00:00:00
nvd
nvd
CVE-2022-23600
2022-02-04 23:15:15
cvelist
cvelist
CVE-2022-23600 Limited ability to spoof SAML authentication with missing audience verification
2022-02-04 22:32:07

0.001 Low

EPSS

Percentile

27.0%

JSON
Related for VERACODE:34017
prion1osv2github1cve1cnvd1nvd1cvelist1