Описание
Variable response times in the AWS Sign-in IAM user login flow allowed for the use of brute force enumeration techniques to identify valid IAM usernames in an arbitrary AWS account.
EPSS
Процентиль: 33%
0.00126
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-204
Связанные уязвимости
CVSS3: 5.3
github
около 1 года назад
Variable response times in the AWS Sign-in IAM user login flow allowed for the use of brute force enumeration techniques to identify valid IAM usernames in an arbitrary AWS account.
EPSS
Процентиль: 33%
0.00126
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-204