CVE-2024-48942 | Syracom Secure Login Plugin up to 3.1.4.5 on Jira/Confluence/Bitbucket 2FA PIN pinvalidation excessive authentication

Inserito da Angelo Barbosa | Ott 10, 2024 | CVE

A vulnerability classified as problematic has been found in Syracom Secure Login Plugin up to 3.1.4.5 on Jira/Confluence/Bitbucket. This affects an unknown part of the file plugins/servlet/twofactor/public/pinvalidation of the component 2FA PIN Handler. The manipulation leads to improper restriction of excessive authentication attempts.

This vulnerability is uniquely identified as CVE-2024-48942. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-48942 | Syracom Secure Login Plugin up to 3.1.4.5 on Jira/Confluence/Bitbucket 2FA PIN pinvalidation excessive authentication

Post correlati

CVE-2021-47490 | Linux Kernel up to 5.4.156/5.4.157/5.10.76/5.10.77/5.14.15 drm ttm_transfered_destroy memory leak

CVE-2024-6644 | zmops ArgusDBM up to 0.1.0 AviatorScript CalculateAlarm.java getDefaultClassLoader deserialization (Issue 64)

CVE-2024-33951 | Adam DeHaven Perfect Pullquotes Plugin up to 1.7.5 on WordPress cross site scripting

CVE-2024-41044 | Linux Kernel up to 6.9.9 ppp_async_encode Privilege Escalation