CVE-2024-3826
July 2, 2024, 5:44 p.m.
Tags
Product(s) Impacted
Akana
- before 2022.1.4
Description
In versions of Akana in versions prior to and including 2022.1.3 validation is broken when using the SAML Single Sign-On (SSO) functionality.
Weaknesses
CWE-287
Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
CWE ID: 287Date
Published: July 2, 2024, 4:15 p.m.
Last Modified: July 2, 2024, 5:44 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
security@puppet.com
References
https://portal.perforce.com/
security@puppet.com