CVE-2024-33856 | Logpoint up to 7.3.x Forgot Password Endpoint timing discrepancy

Inserito da Angelo Barbosa | Mag 7, 2024 | CVE

A vulnerability classified as problematic has been found in Logpoint up to 7.3.x. This affects an unknown part of the component Forgot Password Endpoint. The manipulation leads to observable timing discrepancy.

This vulnerability is uniquely identified as CVE-2024-33856. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-33856 | Logpoint up to 7.3.x Forgot Password Endpoint timing discrepancy

Post correlati

CVE-2023-49963 | DYMO LabelWriter Print Server up to 2.366 hard-coded password

CVE-2024-35757 | 5 Star Plugins Easy Age Verify Plugin up to 1.8.2 on WordPress cross site scripting

CVE-2024-2015 | ZhiCms 4.0 mcontroller.php getindexdata key sql injection

CVE-2024-40913 | Linux Kernel up to 6.1.94/6.6.34/6.9.5 cachefiles copy_to_user reference count