CVE-2020-23283

CVE-2020-23283

EPSS 1.4%

Information disclosure in Logon Page in MV's mConnect application v02.001.00 allows an attacker to know valid users from the application's database via brute force.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/ifmacedo/mconnect/blob/main/bruteforce https://www.linkedin.com/pulse/descobrindo-usu%C3%A1rios-brute-force-iran/