CVE List

CVE-2020-10807

Moderate 5.3

auth_svc in Caldera before 2.6.5 allows authentication bypass (for REST API requests) via a forged "localhost" string in the HTTP Host header.

Published March 22, 2020.

Affected software

Mitre Caldera

Reference links

Sign Up for Alerts