- Home
- CVEs with nessus.description==The version of Oracle Secure Global Desktop installed on the remote host is 5.3 and is missing a security patch from the October 2017 Critical Patch Update (CPU). It is, therefore, affected by an Apache HTTP server remote authentication bypass vulnerability in the web services component. The Apache HTTP Server contains a flaw that is triggered when third-party modules use the ap_get_basic_auth_pw() function outside of the authentication phase. This allows a remote attacker to bypass authentication requirements.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top