You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
DIRAC's TokenManager does not check permissions on cached tokens
Critical severity
GitHub Reviewed
Published
Feb 8, 2024
in
DIRACGrid/DIRAC
•
Updated Mar 25, 2024
Impact
Any user could get a token that has been requested by another user/agent
Patches
The vulnerability is fixed in version 8.0.37.
Workarounds
None
References
References