exploitDog

GHSA-4j4j-3vh8-c9x5

Опубликовано: 14 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

Attacker is able to determine if the provided username exists (and it's valid) using Request New Password feature, based on the response time.

Attacker is able to determine if the provided username exists (and it's valid) using Request New Password feature, based on the response time.

Ссылки

EPSS

Процентиль: 47%

0.00237

Низкий

5.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2022-32741

CVSS3: 5.3

ubuntu

больше 3 лет назад

Attacker is able to determine if the provided username exists (and it's valid) using Request New Password feature, based on the response time.

CVE-2022-32741

CVSS3: 5.3

nvd

больше 3 лет назад

Attacker is able to determine if the provided username exists (and it's valid) using Request New Password feature, based on the response time.

EPSS

Процентиль: 47%

0.00237

Низкий

5.3 Medium

CVSS3

CVE ID