PT-2022-25543 · Unknown · Opal Login History Plugin

Published

2022-11-20

Updated

2022-11-20

CVE-2022-4080

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Opal Login History Plugin (affected versions not specified)

Description A problematic vulnerability has been found in the Opal Login History Plugin, affecting the HTTP Header Handler component. The issue arises from the manipulation of the X-Forwarded-For argument, leading to improper output neutralization for logs. This can be exploited remotely.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-4080

Affected Products

Opal Login History Plugin

PT-2022-25543 · Unknown · Opal Login History Plugin

CVE-2022-4080

Related Identifiers

Affected Products

References · 2