Security Advisory

CVE-2024-45340

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-28 01:03:24

Last updated 2025-01-30 19:14:21

Assigner Go

State PUBLISHED

Description

Credentials provided via the new GOAUTH feature were not being properly segmented by domain, allowing a malicious server to request credentials they should not have access to. By default, unless otherwise set, this only affected credentials stored in the users .netrc file.

← Browse all CVEs View on cve.org ↗