Количество 2
Количество 2
CVE-2022-42731
больше 3 лет назад
mfa/FIDO2.py in django-mfa2 before 2.5.1 and 2.6.x before 2.6.1 allows a replay attack that could be used to register another device for a user. The device registration challenge is not invalidated after usage.
CVSS3: 7.5
EPSS: Низкий
GHSA-vw39-2wj9-4q86
больше 3 лет назад
django-mfa2 vulnerable to MFA Replay attack
CVSS3: 7.5
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-42731 mfa/FIDO2.py in django-mfa2 before 2.5.1 and 2.6.x before 2.6.1 allows a replay attack that could be used to register another device for a user. The device registration challenge is not invalidated after usage. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
| GHSA-vw39-2wj9-4q86 django-mfa2 vulnerable to MFA Replay attack | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20