CVE-2018-8096 in Seq
Summary
Datalust Seq before 4.2.605 is vulnerable to Authentication Bypass (with the attacker obtaining admin access) via '"Name":"isauthenticationenabled","Value":false' in an api/settings/setting-isauthenticationenabled PUT request.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
Reservation
03/13/2018
Disclosure
03/13/2018
Status
Confirmed
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 114490 | Datalust Seq setting-isauthenticationenabled improper authentication | 287 | Proof-of-Concept | Official fix | CVE-2018-8096 |