Lucene search

K

Veracode Vulnerability DatabaseVERACODE:23257

HistoryApr 10, 2020 - 12:20 a.m.

Authentication Bypass

2020-04-1000:20:42

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

13

EPSS

0.004

Percentile

74.3%

kdebase is vulnerable to authentication bypass. The vulnerability exists in the way KDM handled logins when autologin and “shutdown with password” were enabled. A local user would have been able to login via KDM as any user without requiring a password.

References

lists.opensuse.org/opensuse-security-announce/2007-10/msg00006.html

secunia.com/advisories/26894

secunia.com/advisories/26904

secunia.com/advisories/26915

secunia.com/advisories/26929

secunia.com/advisories/26977

secunia.com/advisories/27089

secunia.com/advisories/27096

secunia.com/advisories/27106

secunia.com/advisories/27180

secunia.com/advisories/27271

security.gentoo.org/glsa/glsa-200710-15.xml

securitytracker.com/id?1018724

www.debian.org/security/2007/dsa-1376

www.kde.org/info/security/advisory-20070919-1.txt

www.mandriva.com/security/advisories?name=MDKSA-2007:190

www.redhat.com/security/updates/classification/#moderate

www.redhat.com/support/errata/RHSA-2007-0905.html

www.securityfocus.com/bid/25730

www.ubuntu.com/usn/usn-517-1

www.vupen.com/english/advisories/2007/3227

access.redhat.com/errata/RHSA-2007:0905

exchange.xforce.ibmcloud.com/vulnerabilities/36711

issues.rpath.com/browse/RPL-1725

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10359

www.redhat.com/archives/fedora-package-announce/2007-October/msg00022.html

www.redhat.com/archives/fedora-package-announce/2007-October/msg00084.html

EPSS

0.004

Percentile

74.3%

Related for VERACODE:23257

nvd1 nessus14 openvas19 osv1 ubuntu1 cvelist1 securityvulns2 debian1 cve1 gentoo1 ubuntucve1 prion1 freebsd1 centos1 redhat1 slackware1 fedora3 oraclelinux1