Hi, On Fri, Aug 02, 2024 at 02:46:48PM +0000, Dane Bouchie wrote: > This issue is basically CVE-2006-2369 > > On Aug 2, 2024 10:41 AM, Dane Bouchie <dbouc...@iradimed.com> wrote: > The client chooses the security type, so they can pass in "None" to the > switch statement. is_allowed_security_type() now prevents that.
FTR, this issue has the following CVE assigned: https://www.cve.org/CVERecord?id=CVE-2024-42458 Regards, Salvatore
