vulnerability

Debian: CVE-2019-1010247: libapache2-mod-auth-openidc -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:P/A:N)	2019-07-19	2019-08-26	2020-02-10

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:N)

Published

2019-07-19

Added

2019-08-26

Modified

2020-02-10

Description

ZmartZone IAM mod_auth_openidc 2.3.10.1 and earlier is affected by: Cross Site Scripting (XSS). The impact is: Redirecting the user to a phishing page or interacting with the application on behalf of the user. The component is: File: src/mod_auth_openidc.c, Line: 3109. The fixed version is: 2.3.10.2.

Solution

debian-upgrade-libapache2-mod-auth-openidc

References

CVE-2019-101024
https://attackerkb.com/topics/CVE-2019-101024
DEBIAN-DLA-1894-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today