Vulnerabilities > Buildbot

DATE	CVE	VULNERABILITY TITLE	RISK
2019-05-23	CVE-2019-12300	Improper Authentication vulnerability in Buildbot Buildbot before 1.8.2 and 2.x before 2.3.1 accepts a user-submitted authorization token from OAuth and uses it to authenticate a user. network low complexity buildbot CWE-287 critical	9.8
2019-02-03	CVE-2019-7313	CRLF Injection vulnerability in Buildbot www/resource.py in Buildbot before 1.8.1 allows CRLF injection in the Location header of /auth/login and /auth/logout via the redirect parameter. network low complexity buildbot CWE-93	6.1

Vulnerabilities > Buildbot {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Buildbot"}]}