Описание
Attacker is able to determine if the provided username exists (and it's valid) using Request New Password feature, based on the response time.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/xenial | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| impish | ignored | end of life |
| jammy | needs-triage | |
| upstream | needs-triage |
Показывать по
10
5 Medium
CVSS2
5.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.3
nvd
больше 3 лет назад
Attacker is able to determine if the provided username exists (and it's valid) using Request New Password feature, based on the response time.
CVSS3: 5.3
github
больше 3 лет назад
Attacker is able to determine if the provided username exists (and it's valid) using Request New Password feature, based on the response time.
5 Medium
CVSS2
5.3 Medium
CVSS3