Опубликовано: 11 фев. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 6.9
CVSS3: 5.3
Описание
The login functionality of the web server in affected devices does not normalize the response times of login attempts. An unauthenticated remote attacker could exploit this side-channel information to distinguish between valid and invalid usernames.
The login functionality of the web server in affected devices does not normalize the response times of login attempts. An unauthenticated remote attacker could exploit this side-channel information to distinguish between valid and invalid usernames.
Связанные уязвимости
CVSS3: 5.3
nvd
12 месяцев назад
The login functionality of the web server in affected devices does not normalize the response times of login attempts. An unauthenticated remote attacker could exploit this side-channel information to distinguish between valid and invalid usernames.