all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

USN-6826-1: mod_jk vulnerability

Add to bookmarks
June 11, 2024, 12:37 p.m. |

Ubuntu security notices ubuntu.com

Karl von Randow discovered that mod_jk was vulnerable to an authentication
bypass. If the configuration did not provide explicit mounts for all
possible proxied requests, an attacker could possibly use this
vulnerability to bypass security constraints configured in httpd.

attacker authentication authentication bypass bypass configuration constraints explicit httpd requests security usn vulnerability vulnerable

Visit resource

More from ubuntu.com / Ubuntu security notices

USN-6819-4: Linux kernel (Oracle) vulnerabilities 2 hours ago | ubuntu.com
attacker crash cve data +17
USN-6852-1: Wget vulnerability 3 hours ago | ubuntu.com
attacker host trick uri +3
USN-6843-1: Plasma Workspace vulnerability 3 hours ago | ubuntu.com
access arbitrary code attacker code +9
USN-6850-1: OpenVPN vulnerability 14 hours ago | ubuntu.com
attacker authentication bypass credentials +6
USN-6849-1: Salt vulnerabilities 20 hours ago | ubuntu.com
access attacker authentication cve +4
USN-6746-2: Google Guest Agent and Google OS Config Agent vulnerability 20 hours ago | ubuntu.com
advisory agent attacker config +12
USN-6848-1: Roundcube vulnerabilities 21 hours ago | ubuntu.com
attacker code cve headers +14
USN-6847-1: libheif vulnerabilities 22 hours ago | ubuntu.com
attacker crash cve data +10
USN-6846-1: Ansible vulnerabilities 1 day, 4 hours ago | ubuntu.com
ansible attacker automated cve +17

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Technology Specialist I: Windows Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, California
View on infosec-jobs.com

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
View on infosec-jobs.com

Vice President, Controls Design & Development-7

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Vice President, Controls Design & Development-5

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Data Scientist & AI Prompt Engineer

@ Varonis | Israel
View on infosec-jobs.com

Contractor

@ Birlasoft | INDIA - MUMBAI - BIRLASOFT OFFICE, IN
View on infosec-jobs.com