VYPR
Unrated severityNVD Advisory· Published Jul 2, 2019· Updated Aug 4, 2024

CVE-2019-10136

CVE-2019-10136

Description

It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

53

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.