CVE-2020-27508

CVE-2020-27508

EPSS 1.3%

In two-factor authentication, the system also sending 2fa secret key in response, which enables an intruder to breach the 2fa security.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/frappe/frappe/pull/11262 https://github.com/frappe/frappe/pull/11263