exploitDog

GHSA-7xmj-r3rh-c5m3

Опубликовано: 15 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 6.3

Описание

Helix ALM prior to 2025.1 returns distinct error responses during authentication, allowing an attacker to determine whether a username exists.

Helix ALM prior to 2025.1 returns distinct error responses during authentication, allowing an attacker to determine whether a username exists.

Ссылки

EPSS

Процентиль: 18%

0.00057

Низкий

6.3 Medium

CVSS4

CVE ID

Дефекты

CWE-203

Связанные уязвимости

CVE-2024-11084

nvd

10 месяцев назад

Helix ALM prior to 2025.1 returns distinct error responses during authentication, allowing an attacker to determine whether a username exists.

EPSS

Процентиль: 18%

0.00057

Низкий

6.3 Medium

CVSS4

CVE ID

Дефекты

CWE-203