CVE-2024-8796 | Devise-Two-Factor up to 5.x Multi-Factor Authentication Code entropy

Inserito da Angelo Barbosa | Set 17, 2024 | CVE

A vulnerability classified as problematic has been found in Devise-Two-Factor up to 5.x. This affects an unknown part of the component Multi-Factor Authentication Code Handler. The manipulation leads to insufficient entropy.

This vulnerability is uniquely identified as CVE-2024-8796. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-8796 | Devise-Two-Factor up to 5.x Multi-Factor Authentication Code entropy

Post correlati

CVE-2024-7889 | Citrix Workspace App prior 2402 LTSR CU1/CR 2405 on Windows Local Privilege Escalation (CTX691485)

CVE-2024-34462 | Alinto SOGo up to 5.10.0 Attachment Preview cross site scripting

CVE-2024-30212 | Microchip MPLAB Harmony 3 Core Module up to 3.13.3 SCSI READ Command integer overflow

CVE-2023-43516 | Qualcomm WSA8835 Message memory corruption