Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mercredi 13 janvier 2021

ClusterLabs Hawk up to 2.3.0-x Cookie hawk_remember_me_id code injection

A vulnerability was found in ClusterLabs Hawk up to 2.3.0-x and classified as critical. This issue affects some unknown processing of the component Cookie Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 46


Événements SSI