Описание
A security issue exists within DataMosaix™ Private Cloud, allowing attackers to bypass MFA during setup and obtain a valid login-token cookie without knowing the users password. This vulnerability occurs when MFA is enabled but not completed within a 7-day period.
EPSS
Процентиль: 5%
0.00022
Низкий
Дефекты
CWE-1390
Связанные уязвимости
github
3 месяца назад
A security issue exists within DataMosaix™ Private Cloud, allowing attackers to bypass MFA during setup and obtain a valid login-token cookie without knowing the users password. This vulnerability occurs when MFA is enabled but not completed within a 7-day period.
EPSS
Процентиль: 5%
0.00022
Низкий
Дефекты
CWE-1390