HTTP-FS-file-server icon indicating copy to clipboard operation
HTTP-FS-file-server copied to clipboard
verified publisher icon Tiarait

Vulnerable to Authentication bypass by HTTP verb tampering

Open writingcodeandlearning opened this issue 1 year ago • 0 comments

In app android-tv v.1.1.4 a vulnerability found in http auth. This allow a atacker access to sensibility information.

For mitigate: Ensure that only legitimate HTTP verbs are allowed Do not use HTTP verbs as factors in access decisions.

This dont modify in app or for user.

Resoueses: https://capec.mitre.org/data/definitions/274.html

writingcodeandlearning avatar Aug 14 '24 13:08 writingcodeandlearning