CVE-2024-29033 | oauthenticator prior 16.3.0 GoogleOAuthenticator.hosted_domain improper authorization

Inserito da Angelo Barbosa | Mar 20, 2024 | CVE

A vulnerability, which was classified as critical, has been found in oauthenticator. This issue affects the function GoogleOAuthenticator.hosted_domain. The manipulation leads to improper authorization.

The identification of this vulnerability is CVE-2024-29033. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29033 | oauthenticator prior 16.3.0 GoogleOAuthenticator.hosted_domain improper authorization

Post correlati

CVE-2024-29152 | Samsung Auto T5123 information disclosure

CVE-2022-36028 | BigBlueButton Greenlight up to 2.12.x Login Page return_to redirect

CVE-2023-6901 | codelyfe Stupid Simple CMS up to 1.2.3 HTTP POST Request handle-command.php command os command injection

CVE-2024-47836 | admidio up to 4.3.11 deserialization