Vulnerabilities > CVE-2020-11872 - Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Bluetrace Opentrace 1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
The Cloud Functions subsystem in OpenTrace 1.0 might allow fabrication attacks by making billions of TempID requests before an AES-256-GCM key rotation occurs.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |