An issue discovered in casdoor v1.636.0 allows attackers to obtain sensitive information via the ssh.InsecureIgnoreHostKey() method.
References
Link | Resource |
---|---|
https://gist.github.com/nyxfqq/33ceaccbc9b05d439a944c2b55fa1c0f | Third Party Advisory |
Configurations
History
16 Aug 2024, 16:00
Type | Values Removed | Values Added |
---|---|---|
References | () https://gist.github.com/nyxfqq/33ceaccbc9b05d439a944c2b55fa1c0f - Third Party Advisory | |
CPE | cpe:2.3:a:casbin:casdoor:1.636.0:*:*:*:*:*:*:* | |
First Time |
Casbin
Casbin casdoor |
|
CWE | CWE-295 |
07 Aug 2024, 20:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-200 | |
Summary |
|
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
01 Aug 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-08-01 16:15
Updated : 2024-08-16 16:00
NVD link : CVE-2024-41264
Mitre link : CVE-2024-41264
CVE.ORG link : CVE-2024-41264
JSON object : View
Products Affected
casbin
- casdoor