Lucene search
Veracode Vulnerability DatabaseVERACODE:13596HistoryApr 05, 2019 - 2:59 a.m.
Authentication Bypass
2019-04-0502:59:11
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.042 Low
EPSS
Percentile
92.3%
github.com/influxdata/influxdb is vulnerable to authentication bypass. A remote attacker is able to bypass authentication and gain access to the application by submitting a blank shared secret in a BearerAuthentication.
References
github.com/influxdata/influxdb/commit/761b557315ff9c1642cf3b0e5797cd3d983a24c0
github.com/influxdata/influxdb/compare/v1.7.5...v1.7.6
github.com/influxdata/influxdb/issues/12927
github.com/influxdata/influxdb/pull/13088
github.com/influxdata/influxdb/pull/13132
lists.debian.org/debian-lts-announce/2020/12/msg00030.html
www.debian.org/security/2021/dsa-4823
Related
debian
debian
[SECURITY] [DLA 2501-1] influxdb security update
2020-12-20 08:28:39
[SECURITY] [DSA 4823-1] influxdb security update
2021-01-01 18:47:55
nessus
nessus
Debian DSA-4823-1 : influxdb - security update
2021-01-04 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : InfluxDB vulnerability (USN-5451-1)
2022-05-31 00:00:00
Photon OS 3.0: Influxdb PHSA-2020-3.0-0172
2020-12-10 00:00:00
nvd
nvd
CVE-2019-20933
2020-11-19 02:15:11
osv
osv
Improper Authentication in InfluxDB
2021-05-18 18:22:05
influxdb - security update
2021-01-01 00:00:00
influxdb vulnerability
2022-05-31 17:43:25
ubuntucve
ubuntucve
CVE-2019-20933
2020-11-19 00:00:00
githubexploit
githubexploit
Exploit for Improper Authentication in Influxdata Influxdb
2021-04-28 16:25:31
Exploit for Improper Authentication in Influxdata Influxdb
2021-07-24 11:12:13
cve
cve
CVE-2019-20933
2020-11-19 02:15:11
debiancve
debiancve
CVE-2019-20933
2020-11-19 02:15:11
prion
prion
Authentication flaw
2020-11-19 02:15:00
github
github
Improper Authentication in InfluxDB
2021-05-18 18:22:05
photon
photon
Critical Photon OS Security Update - PHSA-2020-0172
2020-12-07 00:00:00
Critical Photon OS Security Update - PHSA-2020-3.0-0172
2020-12-07 00:00:00
Critical Photon OS Security Update - PHSA-2021-0308
2021-01-05 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5451-1)
2022-06-02 00:00:00
Debian: Security Advisory (DLA-2501-1)
2020-12-21 00:00:00
Debian: Security Advisory (DSA-4823-1)
2021-01-03 00:00:00
cnvd
cnvd
InfluxDB authentication bypass vulnerability
2020-11-19 00:00:00
nuclei
nuclei
InfluxDB <1.7.6 - Authentication Bypass
2022-08-23 03:59:33
redhatcve
redhatcve
CVE-2019-20933
2020-11-20 18:22:58
ubuntu
ubuntu
InfluxDB vulnerability
2022-05-31 00:00:00
cvelist
cvelist
CVE-2019-20933
2020-11-19 01:50:50