CVE-2014-4168
Description
(1) iodined.c and (2) user.c in iodine before 0.7.0 allows remote attackers to bypass authentication by continuing execution after an error has been triggering.
Risk Information
Base Score
9.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.036
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| iodine security update(DSA-2964-1) iodine_0.6.0~rc1-12+deb7u1_i386.deb | Linux |
| iodine security update(DSA-2964-1) iodine_0.7.0-5_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234