[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-4660-1 awl -- awl

ID: oval:org.secpod.oval:def:604810Date: (C)2020-04-23   (M)2021-09-30
Class: PATCHFamily: unix




Andrew Bartlett discovered that awl, DAViCal Andrew"s Web Libraries, did not properly handle session management: this would allow a malicious user to impersonate other sessions or users.

Platform:
Debian 10.x
Debian 9.x
Product:
libawl-php
awl-doc
Reference:
DSA-4660-1
CVE-2020-11728
CVE-2020-11729
CVE    2
CVE-2020-11729
CVE-2020-11728
CPE    5
cpe:/o:debian:debian_linux:10.x
cpe:/o:debian:debian_linux:9.0
cpe:/o:debian:debian_linux:9.x
cpe:/a:awl:awl-doc
...

© SecPod Technologies