漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
When updating a password in the rhvm database the ovirt-aaa-jdbc-tool tools before 1.1.3 fail to correctly check for the current password if it is expired. This would allow access to an attacker with access to change the password on accounts with expired passwords, gaining access to those accounts.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
ovirt-aaa-jdbc-tool工具安全漏洞
Vulnerability Description
ovirt-aaa-jdbc-tool tools是一款用于在数据库中存储身份验证和授权数据的工具。 ovirt-aaa-jdbc-tool工具1.1.3之前版本中存在安全漏洞,该漏洞源于程序没有正确的验证当前密码是否失效。攻击者可通过使用失效的密码来更改账户密码利用该漏洞获取账户的访问权限。
CVSS Information
N/A
Vulnerability Type
N/A