Опубликовано: 22 янв. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4
CVSS3: 4.3
Описание
An issue was discovered in phpMyAdmin 4.9 before 4.9.8 and 5.1 before 5.1.2. A valid user who is already authenticated to phpMyAdmin can manipulate their account to bypass two-factor authentication for future login instances.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | code not present |
| devel | needs-triage | |
| esm-apps/bionic | not-affected | code not present |
| esm-apps/focal | needed | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| esm-apps/xenial | not-affected | code not present |
| esm-infra-legacy/trusty | not-affected | code not present |
| focal | ignored | end of standard support, was needed |
| impish | ignored | end of life |
Показывать по
10
EPSS
Процентиль: 25%
0.00087
Низкий
4 Medium
CVSS2
4.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 4.3
nvd
около 4 лет назад
An issue was discovered in phpMyAdmin 4.9 before 4.9.8 and 5.1 before 5.1.2. A valid user who is already authenticated to phpMyAdmin can manipulate their account to bypass two-factor authentication for future login instances.
CVSS3: 4.3
debian
около 4 лет назад
An issue was discovered in phpMyAdmin 4.9 before 4.9.8 and 5.1 before ...
EPSS
Процентиль: 25%
0.00087
Низкий
4 Medium
CVSS2
4.3 Medium
CVSS3