CVE-2021-45890
CRITICAL WAF: Low
CVSS 9.8
Published: 2021-12-27
CWE-287
basic/BasicAuthProvider.java in AuthGuard before 0.9.0 allows authentication via an inactive identifier.
WAF Coverage Analysis
Improper Authentication
Low WAF Coverage
OWASP: A07:2021 Identification and Authentication Failures
Affected Software
| Vendor | Product | Version |
|---|---|---|
| authguard_project | authguard | up to 0.9.0 |
References
- github.com (Patch, Third Party Advisory)
- github.com (Release Notes, Third Party Advisory)
- github.com (Issue Tracking, Third Party Advisory)
- github.com (Patch, Third Party Advisory)