Source |
CVE Liste |
Identifiant |
8301075 |
Date de publication |
2023-01-14 01:15:15 (vue: 2023-01-14 07:08:20) |
Titre |
CVE-2023-22495 |
Texte |
Izanami is a shared configuration service well-suited for micro-service architecture implementation. Attackers can bypass the authentication in this application when deployed using the official Docker image. Because a hard coded secret is used to sign the authentication token (JWT), an attacker could compromise another instance of Izanami. This issue has been patched in version 1.11.0. |
Envoyé |
Oui |
Condensat |
2023 22495 another application architecture attacker attackers authentication because been bypass can coded compromise configuration could cve deployed docker hard has image implementation instance issue izanami jwt micro official patched secret service shared sign suited token used using version well when |
Tags |
|
Stories |
|
Notes |
|
Move |
|