漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
ajenti.plugin.core has a race conditions in 2FA
Vulnerability Description
ajenti.plugin.core defines all necessary core elements to allow Ajenti to run properly. Prior to 0.112, if the 2FA was activated, it was possible during a short moment after the authentication of an user to bypass its authentication. This vulnerability is fixed in 0.112.
CVSS Information
N/A
Vulnerability Type
认证机制不恰当
Vulnerability Title
ajenti 竞争条件问题漏洞
Vulnerability Description
ajenti是ajenti开源的一个 Linux 和 BSD 模块化服务器管理面板。 Ajenti 0.112之前版本存在竞争条件问题漏洞,该漏洞源于用户身份验证后的短时间内可能绕过其身份验证。
CVSS Information
N/A
Vulnerability Type
N/A