CVE-2020-14341 – The "Test Connection" available in v7.x of the Red Hat Single Sign On applicatio …

12 January 2021

Vuln ID: CVE-2020-14341

Published: 2021-01-12 15:15:13Z

Description: The "Test Connection" available in v7.x of the Red Hat Single Sign On application console can permit an authorized user to cause SMTP connections to be attempted to arbitrary hosts and ports of the user’s choosing, and originating from the RHSSO installation. By observing differences in the timings of these scans, an attacker may glean information about hosts and ports which they do not have access to scan directly.

Source: NVD.NIST.GOV

Date:

12 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Azure Virtual Network Encryption26 April 2024
Four trends to top the CISO’s packed agenda26 April 2024
Microsoft Publicly Releases MS-DOS 4.0 Source Code26 April 2024
New SSLoad Malware Combined With Tools Hijacking Entire Network Domain26 April 2024
Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites26 April 2024