Authentication Bypass Vulnerability in Tgstation tgstation-server 3.2.4.0 through 3.2.1.0

Authentication Bypass Vulnerability in Tgstation tgstation-server 3.2.4.0 through 3.2.1.0

CVE-2018-17107 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

In Tgstation tgstation-server 3.2.4.0 through 3.2.1.0 (fixed in 3.2.5.0), active logins would be cached, allowing subsequent logins to succeed with any username or password.

Learn more about our Cis Benchmark Audit For Server Software.