CVE-2019-18985

CVE-2019-18985

EPSS 1.4%

Pimcore before 6.2.2 lacks brute force protection for the 2FA token.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/pimcore/pimcore/commit/9f2d075243a8392c114d9a8028858b9faf041e2d https://github.com/pimcore/pimcore/compare/v6.2.1...v6.2.2