Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:48218
HistoryJul 24, 2024 - 9:43 a.m.

Improper Authorization

2024-07-2409:43:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
streampark
improper authorization
backend service
front-end authentication
user information
administrator's username
password
salt value
software

AI Score

7

Confidence

High

JSON

Streampark is vulnerable to Improper Authorization. The vulnerability is due to the Backend service returning “Authorization” as the front-end authentication credential upon successful login, allowing users to request other users’ information, including the administrator’s username, password, and salt value.

Related

cvelist 1
nvd 1
vulnrichment 1
cve 1
cvelist
cvelist
CVE-2024-29120 Apache StreamPark: Information leakage vulnerability
2024-07-17 14:59:04
nvd
nvd
CVE-2024-29120
2024-07-17 15:15:14
vulnrichment
vulnrichment
CVE-2024-29120 Apache StreamPark: Information leakage vulnerability
2024-07-17 14:59:04
cve
cve
CVE-2024-29120
2024-07-17 15:15:14

AI Score

7

Confidence

High

JSON
Related for VERACODE:48218
cvelist1nvd1vulnrichment1cve1