JumpServer CVE-2023-42820 Exploit - System32

svg

svg

svg

Now Reading: JumpServer CVE-2023-42820 Exploit

Loading

Loading

JumpServer CVE 2023 42820 Exploit

Exploits And POCs

October 14, 2023 / Prapattimynk

JumpServer CVE-2023-42820 Exploit

15

Share

Ads

JumpServer is an open source bastion host. This vulnerability is due to exposing the random number seed to the API, potentially allowing the randomly generated verification codes to be replayed, which could lead to password resets. If MFA is enabled users are not affect. Users not using local authentication are also not affected. Users are advised to upgrade to either version 2.28.19 or to 3.6.5. There are no known workarounds or this issue.

Usage:
python CVE-2023-42820.py -t http://IP:Port -e email -u username

Upvote0PointsDownvote

0 People voted this article. 0 Upvotes - 0 Downvotes.

#exploit

Prev Post

LANDSTAR POWER ONTARIO Canada Data Leak

Next Post

Metabase Pre-auth CVE-2023-38646 RCE Exploit

What do you think?

It is nice to know your opinion. Leave a comment.

Leave a reply Cancel reply

Subscribe & Follow

Popular Posts

01

Craxs Rat V6.7 Working Free Download

September 14, 2023

02

FHR Electric Data Leak

July 8, 2023

03

Postfix SMTP Smuggling CVE-2023-51764 Exploit

December 27, 2023

04

WSPCoerce - PoC to coerce authentication from Windows hosts using MS-WSP

July 28, 2023

05

CVE-2023-20110 Exploit | Cisco Smart Software Manager On-Prem SQL Injection

July 16, 2023

Categories

Cyber sec44
Database123
Exploits And POCs213
Malicious Scripts139
Tools137
Malwares54
Softwares36

Loading

svg

Quick Navigation

1
JumpServer CVE-2023-42820 Exploit