Vulnerability Details CVE-2020-10807
auth_svc in Caldera before 2.6.5 allows authentication bypass (for REST API requests) via a forged "localhost" string in the HTTP Host header.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.3%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
- https://github.com/mitre/caldera/compare/2.6.4...2.6.5
- https://github.com/mitre/caldera/issues/1405
- https://github.com/mitre/caldera/pull/1407
- https://github.com/mitre/caldera/releases/tag/2.6.5
- https://github.com/mitre/caldera/compare/2.6.4...2.6.5
- https://github.com/mitre/caldera/issues/1405
- https://github.com/mitre/caldera/pull/1407
- https://github.com/mitre/caldera/releases/tag/2.6.5
Products affected by CVE-2020-10807
-
cpe:2.3:a:mitre:caldera:2.0.0
-
cpe:2.3:a:mitre:caldera:2.1.0
-
cpe:2.3:a:mitre:caldera:2.2.0
-
cpe:2.3:a:mitre:caldera:2.3.0
-
cpe:2.3:a:mitre:caldera:2.3.1
-
cpe:2.3:a:mitre:caldera:2.3.2
-
cpe:2.3:a:mitre:caldera:2.4.0
-
cpe:2.3:a:mitre:caldera:2.5.0
-
cpe:2.3:a:mitre:caldera:2.5.1
-
cpe:2.3:a:mitre:caldera:2.6.0
-
cpe:2.3:a:mitre:caldera:2.6.1
-
cpe:2.3:a:mitre:caldera:2.6.2
-
cpe:2.3:a:mitre:caldera:2.6.3
-
cpe:2.3:a:mitre:caldera:2.6.4