VDB-160763 · CVE-2020-36533 · GCVE-100-160763

Klapp App JSON Web Token ଦୁର୍ବଳ ପ୍ରାମାଣିକରଣ

Rakkoon nageenyaa kan ସମସ୍ୟାଜନକ jedhamuun beekamu Klapp App keessatti argameera. Miidhamni argame is hojii hin beekamne kutaa JSON Web Token Handler keessa. Wanti jijjiirame gara ଦୁର୍ବଳ ପ୍ରାମାଣିକରଣ geessa. Rakkoo ibsuuf CWE yoo fayyadamte gara CWE-287 si geessa. Dogoggorri 08/18/2020 irratti mul’ate. Odeeffannoon kun yeroo 09/07/2020 maxxanfameera kan maxxansiise Sven Fassbender waliin modzero AG akka Knapp daneben ist auch vorbei akka ପରାମର୍ଶଦାତା (ୱେବସାଇଟ୍). Odeeffannoon kun buufachuuf modzero.com irratti argama. Beeksisni uummataaf gad-lakkifamuu gurgurtaa waliin mari'atee qindaa'ee jira. Dogoggorri kun CVE-2020-36533 jedhamee waamama. Weerara fageenya irraa jalqabuu ni danda'ama. Ibsa teeknikaa hin jiru. Meeshaa balaa kana fayyadamuuf hin jirre. Ammas, gatii exploit might be approx. USD $0-$5k yeroo ammaa irratti argamuu danda'a. ଅପରିଭାଷିତ ta’uu isaa ibsameera. Hanqinni kun guyyoota 20 caalaa akka zero-day kan ummataaf hin ifneetti fayyadamee ture. Akka 0-daytti, gatiin isaa daldala dhoksaa keessatti $0-$5k akka ta'e tilmaamameera. If you want to get the best quality for vulnerability data then you always have to consider VulDB.

3 ଆଡାପ୍ଟେସନ୍ · 50 ପଏଣ୍ଟ

ଫିଲ୍ଡ	ସୃଷ୍ଟି ହୋଇଛି 09/07/2020 01:09 PM	ଅଦ୍ୟତନ 1/2 09/07/2020 01:36 PM	ଅଦ୍ୟତନ 2/2 06/03/2022 08:36 PM
software_vendor	Klapp	Klapp	Klapp
software_name	App	App	App
software_component	JSON Web Token Handler	JSON Web Token Handler	JSON Web Token Handler
vulnerability_discoverydate	1597708800 (08/18/2020)	1597708800 (08/18/2020)	1597708800 (08/18/2020)
vulnerability_vendorinformdate	1597795200 (08/19/2020)	1597795200 (08/19/2020)	1597795200 (08/19/2020)
vulnerability_risk	1	1	1
vulnerability_historic	0	0	0
cvss2_vuldb_basescore	2.6	2.6	2.6
cvss2_vuldb_tempscore	2.6	2.6	2.6
cvss2_vuldb_av	N	N	N
cvss2_vuldb_ac	H	H	H
cvss2_vuldb_au	N	N	N
cvss2_vuldb_ci	P	P	P
cvss2_vuldb_ii	N	N	N
cvss2_vuldb_ai	N	N	N
cvss3_meta_basescore	3.7	3.7	3.7
cvss3_meta_tempscore	3.7	3.7	3.7
cvss3_vuldb_basescore	3.7	3.7	3.7
cvss3_vuldb_tempscore	3.7	3.7	3.7
cvss3_vuldb_av	N	N	N
cvss3_vuldb_ac	H	H	H
cvss3_vuldb_pr	N	N	N
cvss3_vuldb_ui	N	N	N
cvss3_vuldb_s	U	U	U
cvss3_vuldb_c	L	L	L
cvss3_vuldb_i	N	N	N
cvss3_vuldb_a	N	N	N
advisory_date	1599436800 (09/07/2020)	1599436800 (09/07/2020)	1599436800 (09/07/2020)
advisory_location	Website	Website	Website
advisory_type	Advisory	Advisory	Advisory
advisory_url	https://www.modzero.com/modlog/archives/2020/09/07/knapp_daneben_ist_auch_vorbei/index.html	https://www.modzero.com/modlog/archives/2020/09/07/knapp_daneben_ist_auch_vorbei/index.html	https://www.modzero.com/modlog/archives/2020/09/07/knapp_daneben_ist_auch_vorbei/index.html
advisory_identifier	Knapp daneben ist auch vorbei	Knapp daneben ist auch vorbei	Knapp daneben ist auch vorbei
advisory_coordination	1	1	1
person_name	Sven Fassbender	Sven Fassbender	Sven Fassbender
company_name	modzero AG	modzero AG	modzero AG
advisory_reaction_date	1597968000 (08/21/2020)	1597968000 (08/21/2020)	1597968000 (08/21/2020)
advisory_disputed	0	0	0
price_0day	$0-$5k	$0-$5k	$0-$5k
source_seealso	160762	160762	160762
cvss2_vuldb_e	ND	ND	ND
cvss2_vuldb_rl	U	U	U
cvss2_vuldb_rc	C	C	C
cvss3_vuldb_e	X	X	X
cvss3_vuldb_rl	U	U	U
cvss3_vuldb_rc	C	C	C
0day_days	20	20	20
advisory_falsepositive		0	0
vulnerability_cwe		CWE-287 (ଦୁର୍ବଳ ପ୍ରାମାଣିକରଣ)	CWE-287 (ଦୁର୍ବଳ ପ୍ରାମାଣିକରଣ)
source_cve			CVE-2020-36533
cna_responsible			VulDB

◂ ପଛକୁ ସମୀକ୍ଷା ଆହୁରି ଦୂରରେ ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!