exploitDog

GHSA-w54h-jpcf-gvh9

Опубликовано: 17 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A lack of rate limiting in the login mechanism of SigningHub v8.6.8 allows attackers to bypass authentication via a brute force attack.

A lack of rate limiting in the login mechanism of SigningHub v8.6.8 allows attackers to bypass authentication via a brute force attack.

Ссылки

EPSS

Процентиль: 29%

0.00106

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-307

Связанные уязвимости

CVE-2025-56221

CVSS3: 9.8

nvd

4 месяца назад

A lack of rate limiting in the login mechanism of SigningHub v8.6.8 allows attackers to bypass authentication via a brute force attack.

EPSS

Процентиль: 29%

0.00106

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-307